64 lines
1.5 KiB
INI
64 lines
1.5 KiB
INI
[SYSTEM]
|
|
#1:print on screen, 0:don't
|
|
DEBUG_SWITCH = 1
|
|
RUN_LOG_PATH = "conf/zlog.conf"
|
|
|
|
[breakpad]
|
|
disable_coredump=0
|
|
enable_breakpad=1
|
|
breakpad_minidump_dir=/tmp/certstore/crashreport
|
|
enable_breakpad_upload=0
|
|
breakpad_upload_url=http://127.0.0.1/
|
|
|
|
[CONFIG]
|
|
#Number of running threads
|
|
thread-nu = 4
|
|
#1 rsync, 0 sync
|
|
mode=1
|
|
#Local default root certificate is valid for 30 days by default
|
|
expire_after = 30
|
|
#Local default root certificate path
|
|
local_debug = 0
|
|
ca_path = ./cert/tsg-ca-v3-trust-ca.pem
|
|
untrusted_ca_path = ./cert/tsg-ca-v3-untrust-ca.pem
|
|
|
|
[MAAT]
|
|
#Configure the load mode,
|
|
#0: using the configuration distribution network
|
|
#1: using local json
|
|
#2: using Redis reads
|
|
maat_json_switch=2
|
|
#When the loading mode is sent to the network, set the scanning configuration modification interval (s).
|
|
effective_interval=1
|
|
#Specify the location of the configuration library table file
|
|
table_info=./conf/table_info.conf
|
|
#Incremental profile path
|
|
inc_cfg_dir=./rule/inc/index
|
|
#Full profile path
|
|
full_cfg_dir=./rule/full/index
|
|
#Json file path when json schema is used
|
|
pxy_obj_keyring=./conf/pxy_obj_keyring.json
|
|
|
|
[LIBEVENT]
|
|
#Local monitor port number, default is 9991
|
|
port = 9991
|
|
|
|
[CERTSTORE_REDIS]
|
|
#The Redis server IP address and port number where the certificate is stored locally
|
|
ip = 127.0.0.1
|
|
port = 6379
|
|
passwd=123456
|
|
|
|
[MAAT_REDIS]
|
|
#Maat monitors the Redsi server IP address and port number
|
|
ip = 192.168.11.243
|
|
port = 6379
|
|
dbindex = 4
|
|
|
|
[stat]
|
|
statsd_server=192.168.10.72
|
|
statsd_port=8126
|
|
statsd_set_prometheus_port=9001
|
|
statsd_set_prometheus_url_path=/certstore_prometheus
|
|
|