|
|
|
|
@ -2,42 +2,56 @@
|
|
|
|
|
; xrdp.ini file version number
|
|
|
|
|
ini_version=1
|
|
|
|
|
|
|
|
|
|
bitmap_cache=true
|
|
|
|
|
bitmap_compression=true
|
|
|
|
|
port=3389
|
|
|
|
|
allow_channels=true
|
|
|
|
|
max_bpp=32
|
|
|
|
|
; fork a new process for each incoming connection
|
|
|
|
|
fork=true
|
|
|
|
|
; minimum security level allowed for client
|
|
|
|
|
; can be 'none', 'low', 'medium', 'high', 'fips'
|
|
|
|
|
crypt_level=high
|
|
|
|
|
; tcp port to listen
|
|
|
|
|
port=3389
|
|
|
|
|
; regulate if the listening socket use socket option tcp_nodelay
|
|
|
|
|
; no buffering will be performed in the TCP stack
|
|
|
|
|
tcp_nodelay=true
|
|
|
|
|
; regulate if the listening socket use socket option keepalive
|
|
|
|
|
; if the network connection disappear without close messages the connection will be closed
|
|
|
|
|
tcp_keepalive=true
|
|
|
|
|
#tcp_send_buffer_bytes=32768
|
|
|
|
|
#tcp_recv_buffer_bytes=32768
|
|
|
|
|
|
|
|
|
|
; security layer can be 'tls', 'rdp' or 'negotiate'
|
|
|
|
|
; for client compatible layer
|
|
|
|
|
security_layer=negotiate
|
|
|
|
|
; minimum security level allowed for client
|
|
|
|
|
; can be 'none', 'low', 'medium', 'high', 'fips'
|
|
|
|
|
crypt_level=high
|
|
|
|
|
; X.509 certificate and private key
|
|
|
|
|
; openssl req -x509 -newkey rsa:2048 -nodes -keyout key.pem -out cert.pem -days 365
|
|
|
|
|
certificate=
|
|
|
|
|
key_file=
|
|
|
|
|
; disable SSlv3
|
|
|
|
|
; regulate xrdp if to accept SSLv3 connections
|
|
|
|
|
#disableSSLv3=true
|
|
|
|
|
; set TLS cipher suites
|
|
|
|
|
#tls_ciphers=HIGH
|
|
|
|
|
|
|
|
|
|
; regulate if the listening socket use socket option tcp_nodelay
|
|
|
|
|
; no buffering will be performed in the TCP stack
|
|
|
|
|
tcp_nodelay=true
|
|
|
|
|
|
|
|
|
|
; regulate if the listening socket use socket option keepalive
|
|
|
|
|
; if the network connection disappear without close messages the connection will be closed
|
|
|
|
|
tcp_keepalive=true
|
|
|
|
|
; Section name to use for automatic login if the client sends username
|
|
|
|
|
; and password
|
|
|
|
|
autorun=X11rdp
|
|
|
|
|
|
|
|
|
|
#tcp_send_buffer_bytes=32768
|
|
|
|
|
#tcp_recv_buffer_bytes=32768
|
|
|
|
|
allow_channels=true
|
|
|
|
|
allow_multimon=true
|
|
|
|
|
bitmap_cache=true
|
|
|
|
|
bitmap_compression=true
|
|
|
|
|
bulk_compression=true
|
|
|
|
|
#hidelogwindow=true
|
|
|
|
|
max_bpp=32
|
|
|
|
|
new_cursors=true
|
|
|
|
|
; fastpath - can be 'input', 'output', 'both', 'none'
|
|
|
|
|
use_fastpath=both
|
|
|
|
|
; when true, userid/password *must* be passed on cmd line
|
|
|
|
|
#require_credentials=true
|
|
|
|
|
; You can set the PAM error text in a gateway setup (MAX 256 chars)
|
|
|
|
|
#pamerrortxt=change your password according to policy at http://url
|
|
|
|
|
|
|
|
|
|
;
|
|
|
|
|
; colors used by windows in RGB format
|
|
|
|
|
;
|
|
|
|
|
|
|
|
|
|
blue=009cb5
|
|
|
|
|
grey=dedede
|
|
|
|
|
#black=000000
|
|
|
|
|
@ -49,24 +63,6 @@ grey=dedede
|
|
|
|
|
#green=00ff00
|
|
|
|
|
#background=626c72
|
|
|
|
|
|
|
|
|
|
#hidelogwindow=true
|
|
|
|
|
|
|
|
|
|
; when true, userid/password *must* be passed on cmd line
|
|
|
|
|
# require_credentials=true
|
|
|
|
|
|
|
|
|
|
; Section name to use for automatic login if the client sends username
|
|
|
|
|
; and password
|
|
|
|
|
autorun=X11rdp
|
|
|
|
|
|
|
|
|
|
bulk_compression=true
|
|
|
|
|
|
|
|
|
|
; You can set the PAM error text in a gateway setup (MAX 256 chars)
|
|
|
|
|
#pamerrortxt=change your password according to policy at http://url
|
|
|
|
|
new_cursors=true
|
|
|
|
|
allow_multimon=true
|
|
|
|
|
|
|
|
|
|
; fastpath - can be set to input / output / both / none
|
|
|
|
|
use_fastpath=both
|
|
|
|
|
;
|
|
|
|
|
; configure login screen
|
|
|
|
|
;
|
|
|
|
|
@ -144,6 +140,11 @@ tcutils=true
|
|
|
|
|
; for debugging xrdp, add following line to section xrdp1
|
|
|
|
|
#chansrvport=/tmp/.xrdp/xrdp_chansrv_socket_7210
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
;
|
|
|
|
|
; Session types
|
|
|
|
|
;
|
|
|
|
|
|
|
|
|
|
[X11rdp]
|
|
|
|
|
name=X11rdp
|
|
|
|
|
lib=libxup.so
|
|
|
|
|
|
Koichiro IWAO
8 years ago