diff options
author | Matt Caswell <matt@openssl.org> | 2022-02-22 10:40:33 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2022-02-28 09:07:34 +0000 |
commit | 3d4dd8f272aafb05446c567c0919870880c6ddd1 (patch) | |
tree | b87816f40a9c9101b3237fbdd593ea8ffcfec664 /doc | |
parent | 37be6feeebfec87733e5cb4762fc12bebba9f124 (diff) |
Correct the UnsafeLegacyServerConnect docs
This option is no longer set by default from OpenSSL 3.0.
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Ben Kaduk <kaduk@mit.edu>
(Merged from https://github.com/openssl/openssl/pull/17748)
Diffstat (limited to 'doc')
-rw-r--r-- | doc/man3/SSL_CONF_cmd.pod | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/doc/man3/SSL_CONF_cmd.pod b/doc/man3/SSL_CONF_cmd.pod index 7971d6e0b5..d4deeb5e82 100644 --- a/doc/man3/SSL_CONF_cmd.pod +++ b/doc/man3/SSL_CONF_cmd.pod @@ -496,7 +496,6 @@ Equivalent to B<SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION>. B<UnsafeLegacyServerConnect>: permits the use of unsafe legacy renegotiation for OpenSSL clients only. Equivalent to B<SSL_OP_LEGACY_SERVER_CONNECT>. -Set by default. B<EncryptThenMac>: use encrypt-then-mac extension, enabled by default. Inverse of B<SSL_OP_NO_ENCRYPT_THEN_MAC>: that is, @@ -731,6 +730,9 @@ B<MinProtocol> and B<MaxProtocol> where added in OpenSSL 1.1.0. B<AllowNoDHEKEX> and B<PrioritizeChaCha> were added in OpenSSL 1.1.1. +The B<UnsafeLegacyServerConnect> option is no longer set by default from +OpenSSL 3.0. + =head1 COPYRIGHT Copyright 2012-2021 The OpenSSL Project Authors. All Rights Reserved. |