diff options
| author | Jeremy Harris <jgh146exb@wizmail.org> | 2022-04-10 22:24:18 +0100 |
|---|---|---|
| committer | Jeremy Harris <jgh146exb@wizmail.org> | 2022-04-10 22:33:29 +0100 |
| commit | 96630700fa134520d4595e8add238dae5a2816c6 (patch) | |
| tree | 9256f187facf5a43c088e758c7ecdef948cacfc7 /doc | |
| parent | bbe76e83735d5fa16a0c7b96abd52eaa8d4de203 (diff) | |
Docs: fix description of SNI-under-DANE. Bug 2265
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/doc-docbook/spec.xfpt | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt index 7f96768f7..f7cc50534 100644 --- a/doc/doc-docbook/spec.xfpt +++ b/doc/doc-docbook/spec.xfpt @@ -29861,8 +29861,10 @@ nothing more to it. Choosing a sensible value not derived insecurely is the only point of caution. The &$tls_out_sni$& variable will be set to this string for the lifetime of the client connection (including during authentication). +.new If DANE validated the connection attempt then the value of the &%tls_sni%& option -is forced to the domain part of the recipient address. +is forced to the name of the destination host, after any MX- or CNAME-folowing. +.wen Except during SMTP client sessions, if &$tls_in_sni$& is set then it is a string received from a client. |