summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 313786a)
raw | patch | inline | side by side (parent: 313786a)
| author | Magnus Hagander <magnus@hagander.net> | |
| Sun, 27 Nov 2016 16:10:02 +0000 (17:10 +0100) | ||
| committer | Magnus Hagander <magnus@hagander.net> | |
| Sun, 27 Nov 2016 16:11:20 +0000 (17:11 +0100) |
Fix that the documentation for three ssl related parameters did not
specify that they can only be changed at server start.
Michael Paquier
specify that they can only be changed at server start.
Michael Paquier
| doc/src/sgml/config.sgml | patch | blob | blame | history |
index 871b04a94b0db8d0f43a6a117b07b359c83f4876..f4f5873f4424c950ca6fceea9d9d62d742468a28 100644 (file)
--- a/doc/src/sgml/config.sgml
+++ b/doc/src/sgml/config.sgml
in the <application>OpenSSL</> package for the syntax of this setting
and a list of supported values. The default value is
<literal>HIGH:MEDIUM:+3DES:!aNULL</>. It is usually reasonable,
- unless you have specific security requirements.
+ unless you have specific security requirements. This parameter can only
+ be set at server start.
</para>
<para>
<listitem>
<para>
Specifies whether to use the server's SSL cipher preferences, rather
- than the client's. The default is true.
+ than the client's. The default is true. This parameter can only be
+ set at server start.
</para>
<para>
Specifies the name of the curve to use in <acronym>ECDH</> key
exchange. It needs to be supported by all clients that connect.
It does not need to be same curve as used by server's Elliptic
- Curve key. The default is <literal>prime256v1</>.
+ Curve key. The default is <literal>prime256v1</>. This parameter
+ can only be set at server start.
</para>
<para>