Installation supplements
------------------------

Within the ./src directory you find some conf-* files for your adjustments:

1. Customization
- conf-tcpbin (path to the ucspi-tcp commands; usually /usr/local/bin)
- conf-man (man page target) => /usr/share/man

2. Compilation - files are autogenerated
- conf-cc (don't need to be touched)
- conf-ccperl (no adjustments required) 
- conf-ldperl (no adjustments required)

Note: The current version detects the AMD64 environment 
and the possible support for dynamic load libraries.

3. Installation dependencies & default - autogenerated
- conf-perl (no adjustments required)
- conf-ssl (default; add path to additional openssl libraries; e.g. Kerberos)
- conf-ecdh (default; additional ECDH sslparms included)
- conf-sslibs (no adjustments required)

4. Certificate and key file handling -- these are parms declared for each server; thus may stay empty/untouched.
   Default values MAY be provided as:
- conf-cafile
- conf-ccafile
- conf-certchainfile
- conf-certfile
- conf-ciphers (a current sample is provided, but not active)
- conf-dhfile (you may use the 'dh1024.pem' in ucspi-ssl's ./etc dir)
- conf-keyfile
- conf-rsa (length of RSA cipher; default 2048 bit)

4. Installation procedure
   Usually, you just install the package with

- package/install

or -- in case the Perl install failes --

- package/install base
- package/man

5. Testing
- package/rts -- or  --
- package/rts base (if Perl is not installed/working).

  The etc/ directory includes some X.509 certs and keyfiles
  for testing. Have a look at those !

6. ucspi-tcp dependencies 
   The vanilla ucspi-tcp-0.88 package from Dan Bernstein does not support
   building 'tcprules' with CIDR support. 

   Download and install 'ucspi-tcp6' from 
   http://www.fehcom.de/ipnet/ucspi-tcp6.html.


Erwin Hoffmann, Hoehn, 3-08-2016.

