X-Git-Url: https://tinc-vpn.org/git/browse?p=tinc;a=blobdiff_plain;f=doc%2Ftincd.8.in;h=ea72204221216db80772d258be17e43263898ff2;hp=f136a1bc7482bf7d08855cdfb7cdc3e51bac9199;hb=3b237afbda86bc95703ed25386cc9a26695d4602;hpb=6eaefb4dbce240334e35f67d9f3db5d4f44e49c9 diff --git a/doc/tincd.8.in b/doc/tincd.8.in index f136a1bc..ea722042 100644 --- a/doc/tincd.8.in +++ b/doc/tincd.8.in @@ -1,4 +1,4 @@ -.Dd 2002-03-25 +.Dd 2011-06-25 .Dt TINCD 8 .\" Manual page created by: .\" Ivo Timmermans @@ -8,7 +8,7 @@ .Nd tinc VPN daemon .Sh SYNOPSIS .Nm -.Op Fl cdDKnL +.Op Fl cdDKnLRU .Op Fl -config Ns = Ns Ar DIR .Op Fl -no-detach .Op Fl -debug Ns Op = Ns Ar LEVEL @@ -16,6 +16,8 @@ .Op Fl -mlock .Op Fl -logfile Ns Op = Ns Ar FILE .Op Fl -bypass-security +.Op Fl -chroot +.Op Fl -user Ns = Ns Ar USER .Op Fl -help .Op Fl -version .Sh DESCRIPTION @@ -51,6 +53,14 @@ Increase debug level or set it to .It Fl n, -net Ns = Ns Ar NETNAME Connect to net .Ar NETNAME . +This will let tinc read all configuration files from +.Pa @sysconfdir@/tinc/ Ar NETNAME . +Specifying +.Li . +for +.Ar NETNAME +is the same as not specifying any +.Ar NETNAME . .It Fl L, -mlock Lock tinc into main memory. This will prevent sensitive data like shared private keys to be written to the system swap files/partitions. @@ -60,16 +70,27 @@ If .Ar FILE is omitted, the default is .Pa @localstatedir@/log/tinc. Ns Ar NETNAME Ns Pa .log. -.It Fl -controlsocket Ns = Ns Ar FILENAME -Open control socket at -.Ar FILENAME . +.It Fl -controlcookie Ns = Ns Ar FILENAME +Store a cookie in +.Ar FILENAME +which allows +.Xr tincctl 8 +to authenticate. If .Ar FILE is omitted, the default is -.Pa @localstatedir@/run/tinc. Ns Ar NETNAME Ns Pa .control. +.Pa @localstatedir@/run/tinc. Ns Ar NETNAME Ns Pa .cookie. .It Fl -bypass-security Disables encryption and authentication of the meta protocol. Only useful for debugging. +.It Fl R, -chroot +With this option tinc chroots into the directory where network +config is located (@sysconfdir@/tinc/NETNAME if -n option is used, +or to the directory specified with -c option) after initialization. +.It Fl U, -user Ns = Ns Ar USER +setuid to the specified +.Ar USER +after initialization. .It Fl -help Display short list of options. .It Fl -version @@ -95,11 +116,10 @@ Connections to hosts whose host config file are removed are closed. New outgoing connections specified in .Pa tinc.conf will be made. -.It INT -Temporarily increases debug level to 5. -Send this signal again to revert to the original level. -.It WINCH -Purges all information remembered about unreachable nodes. +If the +.Fl -logfile +option is used, this will also close and reopen the log file, +useful when log rotation is used. .El .Sh DEBUG LEVELS The tinc daemon can send a lot of messages to the syslog.