summaryrefslogtreecommitdiff
path: root/radsecproxy.conf.5.xml
diff options
context:
space:
mode:
authorLinus Nordberg <linus@torproject.org>2012-10-19 23:23:04 +0200
committerLinus Nordberg <linus@nordu.net>2012-10-22 17:47:18 +0200
commitb04eb90fde13f88772c338ca32a55a7063f2e33d (patch)
tree735f64a3390b06fba4be2fae31d4ee4cf6bc8a0b /radsecproxy.conf.5.xml
parent7393c837a6879f313d7ccf7f26b9805deb7d3feb (diff)
Update documentation on default secret for TLS and DTLS.
The change was done in radsecproxy-1.6 (2012-04-27) but wasn't documented properly.
Diffstat (limited to 'radsecproxy.conf.5.xml')
-rw-r--r--radsecproxy.conf.5.xml8
1 files changed, 5 insertions, 3 deletions
diff --git a/radsecproxy.conf.5.xml b/radsecproxy.conf.5.xml
index 6eca96a..b27922f 100644
--- a/radsecproxy.conf.5.xml
+++ b/radsecproxy.conf.5.xml
@@ -2,7 +2,7 @@
"http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd">
<refentry>
<refentryinfo>
- <date>2012-09-14</date>
+ <date>2012-10-22</date>
</refentryinfo>
<refmeta>
<refentrytitle>
@@ -531,8 +531,10 @@ blocktype name {
<literal>secret</literal> is the shared RADIUS key used with
this client. If the secret contains whitespace, the value must
be quoted. This option is optional for TLS/DTLS and if omitted
- will default to "mysecret". Note that the default value of
- <literal>secret</literal> will change in an upcoming release.
+ will default to "radsec". (Note that using a secret other than
+ "radsec" for TLS is a violation of the standard (RFC 6614) and
+ that the proposed standard for DTLS stipulates that the secret
+ must be "radius/dtls".)
</para>
<para>
For a TLS/DTLS client you may also specify the