From b04eb90fde13f88772c338ca32a55a7063f2e33d Mon Sep 17 00:00:00 2001
From: Linus Nordberg <linus@torproject.org>
Date: Fri, 19 Oct 2012 23:23:04 +0200
Subject: Update documentation on default secret for TLS and DTLS.

The change was done in radsecproxy-1.6 (2012-04-27) but wasn't
documented properly.
---
 radsecproxy.conf.5.xml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/radsecproxy.conf.5.xml b/radsecproxy.conf.5.xml
index 6eca96a..b27922f 100644
--- a/radsecproxy.conf.5.xml
+++ b/radsecproxy.conf.5.xml
@@ -2,7 +2,7 @@
 "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd">
 <refentry>
   <refentryinfo>
-    <date>2012-09-14</date>
+    <date>2012-10-22</date>
   </refentryinfo>
   <refmeta>
     <refentrytitle>
@@ -531,8 +531,10 @@ blocktype name {
       <literal>secret</literal> is the shared RADIUS key used with
       this client. If the secret contains whitespace, the value must
       be quoted. This option is optional for TLS/DTLS and if omitted
-      will default to "mysecret".  Note that the default value of
-      <literal>secret</literal> will change in an upcoming release.
+      will default to "radsec". (Note that using a secret other than
+      "radsec" for TLS is a violation of the standard (RFC 6614) and
+      that the proposed standard for DTLS stipulates that the secret
+      must be "radius/dtls".)
     </para>
     <para>
       For a TLS/DTLS client you may also specify the
-- 
cgit v1.1