From 7550a6fd6fa35d05a7234b8ad67f730596a51fdc Mon Sep 17 00:00:00 2001
From: Jeff Trawick
Date: Mon, 6 Jan 2014 16:02:57 +0000
Subject: [PATCH] merge r1555424 from trunk:
document on/off parameter in the usual manner and show defaults for
SSLHonorCipherOrder, SSLOCSPEnable, SSLOCSPOverrideResponder, and
SSLInsecureRenegotiation
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1555876 13f79535-47bb-0310-9956-ffa450edef68
---
docs/manual/mod/mod_ssl.xml | 11 +++++++----
1 file changed, 7 insertions(+), 4 deletions(-)
diff --git a/docs/manual/mod/mod_ssl.xml b/docs/manual/mod/mod_ssl.xml
index d0a16d6909..741c35c048 100644
--- a/docs/manual/mod/mod_ssl.xml
+++ b/docs/manual/mod/mod_ssl.xml
@@ -2096,7 +2096,8 @@ SSLUserName SSL_CLIENT_S_DN_CN
SSLHonorCipherOrder
Option to prefer the server's cipher preference order
-SSLHonorCipherOrder flag
+SSLHonorCipherOrder on|off
+SSLHonorCipherOrder off
server config
virtual host
Available in Apache 2.1 and later, if using OpenSSL 0.9.7 or later
@@ -2143,7 +2144,8 @@ SSLCryptoDevice ubsec
SSLOCSPEnable
Enable OCSP validation of the client certificate chain
-SSLOCSPEnable flag
+SSLOCSPEnable on|off
+SSLOCSPEnable off
server config
virtual host
Available in httpd 2.3 and later, if using OpenSSL 0.9.7 or later
@@ -2190,7 +2192,8 @@ the certificate being verified.
SSLOCSPOverrideResponder
Force use of the default responder URI for OCSP validation
-SSLOCSPOverrideResponder flag
+SSLOCSPOverrideResponder on|off
+SSLOCSPOverrideResponder off
server config
virtual host
Available in httpd 2.3 and later, if using OpenSSL 0.9.7 or later
@@ -2252,7 +2255,7 @@ which means that OCSP responses are considered valid as long as their
SSLInsecureRenegotiation
Option to enable support for insecure renegotiation
-SSLInsecureRenegotiation flag
+SSLInsecureRenegotiation on|off
SSLInsecureRenegotiation off
server config
virtual host
--
2.40.0