summaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorJeremy Harris <jgh146exb@wizmail.org>2014-09-01 14:54:59 +0100
committerJeremy Harris <jgh146exb@wizmail.org>2014-09-01 14:54:59 +0100
commit036ed0dbc98e9534079f5606134d013218467d52 (patch)
treec5d7ae676ec6692fcac0a3b99d57d7be6628e9b9 /doc
parent5c1da879a397c91b649598fff205d0fd7906eff1 (diff)
Warn on OCSP interaction with DANE
Diffstat (limited to 'doc')
-rw-r--r--doc/doc-txt/experimental-spec.txt4
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/doc-txt/experimental-spec.txt b/doc/doc-txt/experimental-spec.txt
index 28591eaf7..769f0229d 100644
--- a/doc/doc-txt/experimental-spec.txt
+++ b/doc/doc-txt/experimental-spec.txt
@@ -1253,7 +1253,9 @@ hosts_request_ocsp includes the string "tls_out_tlsa_usage",
they are re-expanded in time to control the OCSP request.
This modification of hosts_request_ocsp is only done if
-it has the default value of "*".
+it has the default value of "*". Admins who change it, and
+those who use hosts_require_ocsp, should consider the interaction
+with DANE in their OCSP settings.
For client-side DANE there are two new smtp transport options,