[exim-cvs] Warn on OCSP interaction with DANE

Góra strony
Delete this message
Reply to this message
Autor: Exim Git Commits Mailing List
Data:  
Dla: exim-cvs
Temat: [exim-cvs] Warn on OCSP interaction with DANE
Gitweb: http://git.exim.org/exim.git/commitdiff/036ed0dbc98e9534079f5606134d013218467d52
Commit:     036ed0dbc98e9534079f5606134d013218467d52
Parent:     5c1da879a397c91b649598fff205d0fd7906eff1
Author:     Jeremy Harris <jgh146exb@???>
AuthorDate: Mon Sep 1 14:54:59 2014 +0100
Committer:  Jeremy Harris <jgh146exb@???>
CommitDate: Mon Sep 1 14:54:59 2014 +0100


    Warn on OCSP interaction with DANE
---
 doc/doc-txt/experimental-spec.txt |    4 +++-
 1 files changed, 3 insertions(+), 1 deletions(-)


diff --git a/doc/doc-txt/experimental-spec.txt b/doc/doc-txt/experimental-spec.txt
index 28591ea..769f022 100644
--- a/doc/doc-txt/experimental-spec.txt
+++ b/doc/doc-txt/experimental-spec.txt
@@ -1253,7 +1253,9 @@ hosts_request_ocsp includes the string "tls_out_tlsa_usage",
they are re-expanded in time to control the OCSP request.

This modification of hosts_request_ocsp is only done if
-it has the default value of "*".
+it has the default value of "*". Admins who change it, and
+those who use hosts_require_ocsp, should consider the interaction
+with DANE in their OCSP settings.


For client-side DANE there are two new smtp transport options,