3.1. Startup configuration
halon-dlpd loads the non-reloadable startup configuration is read from /etc/halon/dlpd.yaml
.
Below are some of the most important settings that can be configured.
Note
The example configuration in /opt/halon/share/examples/ that is usually copied to /etc/halon/ during installation contains reasonable defaults. Normally you only need to modify the secret key to use.
3.1.1. Environment directives
The default startup configuration that came with the installation package contains reasonable defaults for your platform. Some settings should however be revised.
3.1.1.1. Configuration paths
Those paths can normally be left unchanged.
- environment.appconf
From where to load the running configuration. The default is /etc/halon/dlpd-app.yaml.
3.1.1.2. Other environment
Those settings should normally be left unchanged. The default startup configuration in /opt/halon/examples that came with the installation package should contain correct parameters for your operating system or distribution.
- environment.socket.path
Have the API socket on a UNIX socket. This option is mutually exclusive with the
environment.controlsocket.port
setting. The default is/var/run/halon/dlpd.sock
.
- environment.socket.owner
This option is only supported with the
environment.socket.path
setting.
- environment.socket.group
This option is only supported with the
environment.socket.path
setting.
- environment.socket.chmod
This option is only supported with the
environment.socket.path
setting.
- environment.controlsocket.port
Have the control socket on a TCP port. This option is mutually exclusive with the
environment.controlsocket.path
setting.
- environment.controlsocket.address
Have the control socket listen on a specific IP address. This option is only supported with the
environment.controlsocket.port
setting.
- environment.controlsocket.path
Have the control socket on a UNIX socket. This option is mutually exclusive with the
environment.controlsocket.port
setting. The default is/var/run/halon/dlpd.ctl
.
- environment.controlsocket.owner
This option is only supported with the
environment.controlsocket.path
setting.
- environment.controlsocket.group
This option is only supported with the
environment.controlsocket.path
setting.
- environment.controlsocket.chmod
This option is only supported with the
environment.controlsocket.path
setting.
- environment.controlsocket.port
Have the control socket on a TCP port. This option is mutually exclusive with the
environment.controlsocket.path
setting.
- environment.controlsocket.address
Have the control socket listen on a specific IP address. This option is only supported with the
environment.controlsocket.port
setting.
- environment.privdrop.user
The user to run the process as.
- environment.privdrop.group
The group to run the process as.
- environment.umask
Application umask after privdrop
- environment.tmpdir
The default temp path for storing extracted files. The default is
/var/spool/halon/tmp/dlpd
.