From 7550a6fd6fa35d05a7234b8ad67f730596a51fdc Mon Sep 17 00:00:00 2001
From: Jeff Trawick <trawick@apache.org>
Date: Mon, 6 Jan 2014 16:02:57 +0000
Subject: [PATCH] merge r1555424 from trunk:

document on/off parameter in the usual manner and show defaults for
SSLHonorCipherOrder, SSLOCSPEnable, SSLOCSPOverrideResponder, and
SSLInsecureRenegotiation


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1555876 13f79535-47bb-0310-9956-ffa450edef68
---
 docs/manual/mod/mod_ssl.xml | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/docs/manual/mod/mod_ssl.xml b/docs/manual/mod/mod_ssl.xml
index d0a16d6909..741c35c048 100644
--- a/docs/manual/mod/mod_ssl.xml
+++ b/docs/manual/mod/mod_ssl.xml
@@ -2096,7 +2096,8 @@ SSLUserName SSL_CLIENT_S_DN_CN
 <directivesynopsis>
 <name>SSLHonorCipherOrder</name>
 <description>Option to prefer the server's cipher preference order</description>
-<syntax>SSLHonorCipherOrder <em>flag</em></syntax>
+<syntax>SSLHonorCipherOrder on|off</syntax>
+<default>SSLHonorCipherOrder off</default>
 <contextlist><context>server config</context>
 <context>virtual host</context></contextlist>
 <compatibility>Available in Apache 2.1 and later, if using OpenSSL 0.9.7 or later</compatibility>
@@ -2143,7 +2144,8 @@ SSLCryptoDevice ubsec
 <directivesynopsis>
 <name>SSLOCSPEnable</name>
 <description>Enable OCSP validation of the client certificate chain</description>
-<syntax>SSLOCSPEnable <em>flag</em></syntax>
+<syntax>SSLOCSPEnable on|off</syntax>
+<default>SSLOCSPEnable off</default>
 <contextlist><context>server config</context>
 <context>virtual host</context></contextlist>
 <compatibility>Available in httpd 2.3 and later, if using OpenSSL 0.9.7 or later</compatibility>
@@ -2190,7 +2192,8 @@ the certificate being verified.</p>
 <directivesynopsis>
 <name>SSLOCSPOverrideResponder</name>
 <description>Force use of the default responder URI for OCSP validation</description>
-<syntax>SSLOCSPOverrideResponder <em>flag</em></syntax>
+<syntax>SSLOCSPOverrideResponder on|off</syntax>
+<default>SSLOCSPOverrideResponder off</default>
 <contextlist><context>server config</context>
 <context>virtual host</context></contextlist>
 <compatibility>Available in httpd 2.3 and later, if using OpenSSL 0.9.7 or later</compatibility>
@@ -2252,7 +2255,7 @@ which means that OCSP responses are considered valid as long as their
 <directivesynopsis>
 <name>SSLInsecureRenegotiation</name>
 <description>Option to enable support for insecure renegotiation</description>
-<syntax>SSLInsecureRenegotiation <em>flag</em></syntax>
+<syntax>SSLInsecureRenegotiation on|off</syntax>
 <default>SSLInsecureRenegotiation off</default>
 <contextlist><context>server config</context>
 <context>virtual host</context></contextlist>
-- 
2.40.0