From b04eb90fde13f88772c338ca32a55a7063f2e33d Mon Sep 17 00:00:00 2001 From: Linus Nordberg Date: Fri, 19 Oct 2012 23:23:04 +0200 Subject: Update documentation on default secret for TLS and DTLS. The change was done in radsecproxy-1.6 (2012-04-27) but wasn't documented properly. --- radsecproxy.conf.5.xml | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/radsecproxy.conf.5.xml b/radsecproxy.conf.5.xml index 6eca96a..b27922f 100644 --- a/radsecproxy.conf.5.xml +++ b/radsecproxy.conf.5.xml @@ -2,7 +2,7 @@ "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd"> - 2012-09-14 + 2012-10-22 @@ -531,8 +531,10 @@ blocktype name { secret is the shared RADIUS key used with this client. If the secret contains whitespace, the value must be quoted. This option is optional for TLS/DTLS and if omitted - will default to "mysecret". Note that the default value of - secret will change in an upcoming release. + will default to "radsec". (Note that using a secret other than + "radsec" for TLS is a violation of the standard (RFC 6614) and + that the proposed standard for DTLS stipulates that the secret + must be "radius/dtls".) For a TLS/DTLS client you may also specify the -- cgit v1.1