From 6117b639d32095fa761f4773c9eec27e9f70f6f4 Mon Sep 17 00:00:00 2001
From: james <james@e7ae566f-a301-0410-adde-c780ea21d3b5>
Date: Thu, 16 Feb 2006 18:17:32 +0000
Subject: svn merge -r 888:889
 https://svn.openvpn.net/projects/openvpn/contrib/alon/BETA21 21

git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@894 e7ae566f-a301-0410-adde-c780ea21d3b5
---
 options.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'options.c')

diff --git a/options.c b/options.c
index d882434..a6b5ba5 100644
--- a/options.c
+++ b/options.c
@@ -484,8 +484,8 @@ static const char usage_message[] =
   "                  explicit extended key usage. Extended key usage can be encoded\n"
   "                  as an object identifier or OpenSSL string representation.\n"
   "--remote-cert-tls t: Require that peer certificate was signed with explicit\n"
-  "                  key usage and extended key usage based on TLS rules.\n"
-  "                  t = 'client | 'server'.\n"
+  "                  key usage and extended key usage based on RFC3280 TLS rules.\n"
+  "                  t = 'client' | 'server'.\n"
 #endif				/* OPENSSL_VERSION_NUMBER */
 #endif				/* USE_SSL */
 #ifdef ENABLE_PKCS11
@@ -4951,7 +4951,7 @@ add_option (struct options *options,
       if (streq (p[1], "server"))
 	{
 	  options->remote_cert_ku[0] = 0xa0;
-	  options->remote_cert_ku[1] = 0x08;
+	  options->remote_cert_ku[1] = 0x88;
 	  options->remote_cert_eku = "TLS Web Server Authentication";
 	}
       else if (streq (p[1], "client"))
-- 
cgit