McAfee MEJCAE-AM-DA Product Guide - Page 95
Default Value, Compatible, Completes-needed, Compress, Conventional-passphrase-fd, Default-key, Notes
View all McAfee MEJCAE-AM-DA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 95 highlights
Using the Configuration File Learning about the configuration file Default Value COMMENT = "" COMPATIBLE The COMPATIBLE parameter, used for specifying E-Business Server 2.6.2 interface compatibility, is not supported in this version. It is allowed for compatibility purposes, but is ignored. In this release, use the EXPORT-FORMAT parameter to set compatibility with E-Business Server 2.6.2. For more information, see EXPORT-FORMAT on page 95. COMPLETES-NEEDED The configuration parameter COMPLETES-NEEDED identifies the minimum number of completely trusted introducers required to fully certify a public key on your public keyring. For more information on trusted introducers, see An Introduction to Cryptography. Default Value COMPLETES-NEEDED = 1 COMPRESS The configuration parameter COMPRESS enables or disables data compression before encryption. It is used mainly to debug E-Business Server. Under normal circumstances, E-Business Server attempts to compress the plaintext before it encrypts it. Compression strengthens security. Therefore, turning COMPRESS off weakens your security. We recommend you do not change this setting. Default Value COMPRESS = on CONVENTIONAL-PASSPHRASE-FD If CONVENTIONAL-PASSPHRASE-FD is specified, E-Business Server reads the passphrase from the specified file descriptor. Use this parameter to transmit a conventional passphrase from one program to another in order to conventionally encrypt a file. Set the CONVENTIONAL-PASSPHRASE-FD parameter equal to a file descriptor number. This option is only necessary if you must supply both your regular E-Business Server passphrase and a conventional passphrase in a single operation. Otherwise, you can use the PASSPHRASE-FD option to supply your passphrase, whether it's your key passphrase, a conventional passphrase, or even a smart card PIN number. For more information on this option, see PASSPHRASE-FD on page 101. For information on the various ways you can supply your passphrase to E-Business Server, see Alternative ways to work with passphrases on page 72. DEFAULT-KEY The configuration parameter DEFAULT-KEY specifies the default key ID to use when selecting a private key for making signatures. If DEFAULT-KEY is not defined, E-Business Server uses the most recently generated private key found on your secret keyring (secring.skr). You can override this setting by using the --default-key option on the E-Business Server command line. Default Value DEFAULT-KEY = "" Notes • ENCRYPT-TO-SELF refers to DEFAULT-KEY. • You must always specify DEFAULT-KEY using the key's key ID, not user ID, to prevent a potential security risk. 93 E-Business Server™ 8.6 Product Guide