xform

author Eric Covener <covener@apache.org>

Sat, 17 Sep 2016 13:09:33 +0000 (13:09 +0000)

committer Eric Covener <covener@apache.org>

Sat, 17 Sep 2016 13:09:33 +0000 (13:09 +0000)
author Eric Covener <covener@apache.org>
Sat, 17 Sep 2016 13:09:33 +0000 (13:09 +0000)
committer Eric Covener <covener@apache.org>
Sat, 17 Sep 2016 13:09:33 +0000 (13:09 +0000)
diff --git a/docs/manual/mod/mod_ssl.html.en b/docs/manual/mod/mod_ssl.html.en

index 942319d8c56890e0141f1787e8e38f2f6191d446..4bce563b414ed774bd468a9642b01fea3ee9c7f5 100644 (file)
--- a/docs/manual/mod/mod_ssl.html.en
+++ b/docs/manual/mod/mod_ssl.html.en
@@ -2665,13 +2665,9 @@ The following levels are available for <em>level</em>:</p>
       the client <em>has to</em> present a valid Certificate</li>
  <li><strong>optional_no_ca</strong>:
       the client may present a valid Certificate<br />
-     but it need not to be (successfully) verifiable.</li>
+     but it need not to be (successfully) verifiable. This option
+     cannot be relied upon for client authentication.  </li>
  </ul>
-<p>In practice only levels <strong>none</strong> and
-<strong>require</strong> are really interesting, because level
-<strong>optional</strong> doesn't work with all browsers and level
-<strong>optional_no_ca</strong> is actually against the idea of
-authentication (but can be used to establish SSL test pages, etc.)</p>
  <div class="example"><h3>Example</h3><pre class="prettyprint lang-config">SSLVerifyClient require</pre>
  </div>
author	Eric Covener <covener@apache.org>
	Sat, 17 Sep 2016 13:09:33 +0000 (13:09 +0000)
committer	Eric Covener <covener@apache.org>
	Sat, 17 Sep 2016 13:09:33 +0000 (13:09 +0000)