lbcwallet/sample-btcwallet.conf
Josh Rickmar 567752ea9b Add option for one time TLS keys.
This option prevents the RPC server TLS key from ever being written to
disk.  This is performed by generating a new certificate pair each
startup and writing (possibly overwriting) the certificate but not the
key.

Closes #359.
2016-02-11 00:15:30 -05:00

119 lines
4.7 KiB
Text

[Application Options]
; ------------------------------------------------------------------------------
; Bitcoin wallet settings
; ------------------------------------------------------------------------------
; Use mainnet (cannot be used with simnet=1).
; mainnet=0
; Use simnet (cannot be used with mainnet=1).
; simnet=0
; The directory to open and save wallet, transaction, and unspent transaction
; output files. Two directories, `mainnet` and `testnet` are used in this
; directory for mainnet and testnet wallets, respectively.
; datadir=~/.btcwallet
; Maximum number of addresses to generate for the keypool (DEPRECATED)
; keypoolsize=100
; Whether transactions must be created with some minimum fee, even if the
; calculated transaction priority is high enough to allow a free tx
; disallowfree = false
; ------------------------------------------------------------------------------
; RPC client settings
; ------------------------------------------------------------------------------
; Connect via a SOCKS5 proxy. NOTE: Specifying a proxy will disable listening
; for incoming connections unless listen addresses are provided via the
; 'rpclisten' option.
; proxy=127.0.0.1:9050
; proxyuser=
; proxypass=
; The server and port used for btcd websocket connections.
; rpcconnect=localhost:18334
; File containing root certificates to authenticate a TLS connections with btcd
; cafile=~/.btcwallet/btcd.cert
; ------------------------------------------------------------------------------
; RPC server settings
; ------------------------------------------------------------------------------
; TLS certificate and key file locations
; rpccert=~/.btcwallet/rpc.cert
; rpckey=~/.btcwallet/rpc.key
; Enable one time TLS keys. This option results in the process generating
; a new certificate pair each startup, writing only the certificate file
; to disk. This is a more secure option for clients that only interact with
; a local wallet process where persistent certs are not needed.
;
; This option will error at startup if the key specified by the rpckey option
; already exists.
; onetimetlskey=0
; Specify the interfaces for the RPC server listen on. One rpclisten address
; per line. Multiple rpclisten options may be set in the same configuration,
; and each will be used to listen for connections. NOTE: The default port is
; modified by some options such as 'mainnet', so it is recommended to not
; specify a port and allow a proper default to be chosen unless you have a
; specific reason to do otherwise.
; rpclisten= ; all interfaces on default port
; rpclisten=0.0.0.0 ; all ipv4 interfaces on default port
; rpclisten=:: ; all ipv6 interfaces on default port
; rpclisten=:18332 ; all interfaces on port 18332
; rpclisten=0.0.0.0:18332 ; all ipv4 interfaces on port 18332
; rpclisten=[::]:18332 ; all ipv6 interfaces on port 18332
; rpclisten=127.0.0.1:18332 ; only ipv4 localhost on port 18332 (this is a default)
; rpclisten=[::1]:18332 ; only ipv6 localhost on port 18332 (this is a default)
; rpclisten=127.0.0.1:18337 ; only ipv4 localhost on non-standard port 18337
; rpclisten=:18337 ; all interfaces on non-standard port 18337
; rpclisten=0.0.0.0:18337 ; all ipv4 interfaces on non-standard port 18337
; rpclisten=[::]:18337 ; all ipv6 interfaces on non-standard port 18337
; Legacy (Bitcoin Core-compatible) RPC listener addresses. Addresses without a
; port specified use the same default port as the new server. Listeners cannot
; be shared between both RPC servers.
;
; Adding any legacy RPC listen addresses disable all default rpclisten options.
; If both servers must run, all listen addresses must be manually specified for
; each.
; legacyrpclisten=
; ------------------------------------------------------------------------------
; RPC settings (both client and server)
; ------------------------------------------------------------------------------
; Username and password to authenticate to btcd a RPC server and authenticate
; new client connections
; username=
; password=
; Alternative username and password for btcd. If set, these will be used
; instead of the username and password set above for authentication to a
; btcd RPC server.
; btcdusername=
; btcdpassword=
; ------------------------------------------------------------------------------
; Debug
; ------------------------------------------------------------------------------
; Debug logging level.
; Valid options are {trace, debug, info, warn, error, critical}
; debuglevel=info
; The port used to listen for HTTP profile requests. The profile server will
; be disabled if this option is not specified. The profile information can be
; accessed at http://localhost:<profileport>/debug/pprof once running.
; profile=6062