From f2839f65bac7f7e54fe2a8fa9f4f225af83d9110 Mon Sep 17 00:00:00 2001
From: Stefan Fritsch <sf@apache.org>
Date: Sun, 5 Jan 2014 16:18:46 +0000
Subject: [PATCH] Merge r1555555 from trunk:    axe one more case of digest
 auth being described as secure

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1555559 13f79535-47bb-0310-9956-ffa450edef68
---
 docs/manual/howto/auth.xml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/docs/manual/howto/auth.xml b/docs/manual/howto/auth.xml
index 362b089fab..2d0f8fc151 100644
--- a/docs/manual/howto/auth.xml
+++ b/docs/manual/howto/auth.xml
@@ -218,8 +218,9 @@ Require user rbowen
     highly sensitive data, unless accompanied by <module>mod_ssl</module>.
     Apache supports one other authentication method:
     <code>AuthType Digest</code>. This method is implemented by <module
-    >mod_auth_digest</module> and is much more secure. Most recent
-    browsers support Digest authentication.</p>
+    >mod_auth_digest</module> and was intended to be more secure. This is no
+    longer the case and the connection should be encrypted with <module
+    >mod_ssl</module> instead.</p>
 
     <p>The <directive module="mod_authn_core">AuthName</directive> directive sets
     the <dfn>Realm</dfn> to be used in the authentication. The realm serves
-- 
2.50.1