Add OCSP support

1 files changed, 17 insertions, 1 deletions

diff --git a/docs/mod_nss.html b/docs/mod_nss.html
index 1d9d5d8..3a03c54 100644
--- a/docs/mod_nss.html
+++ b/docs/mod_nss.html
@@ -349,7 +349,9 @@ Example</span><br style="font-weight: bold;">
 <big><big>NSSFIPS</big></big><br>
 <br>
 Enables or disables FIPS 140 mode. This replaces the standard
-internal PKCS#11 module with a FIPS-enabled one. It also forces the enabled protocols to SSLv3 and TLSv1 and disables all ciphers but the FIPS ones.<br>
+internal PKCS#11 module with a FIPS-enabled one. It also forces the
+enabled protocols to SSLv3 and TLSv1 and disables all ciphers but the
+FIPS ones.<br>
 <span style="font-weight: bold;"><br>
 </span>FIPS is disabled by default.<br>
 <span style="font-weight: bold;"><br>
@@ -357,6 +359,20 @@ Example</span><br style="font-weight: bold;">
 <br>
 <code>NSSFIPS on</code><br>
 <br>
+<big><big>NSSOCSP</big></big><br>
+<br>
+Enables or disables <a
+ href="http://www.ietf.org/rfc/rfc2560.txt?number=2560">OCSP</a>
+(Online Certificate Status Protocol). This allows the server to check
+the validity of a client certificate before accepting it.<br>
+<br>
+<span style="font-weight: bold;"></span>OCSP<span
+ style="font-weight: bold;"> </span>is disabled by default.<br>
+<span style="font-weight: bold;"><br>
+Example</span><br style="font-weight: bold;">
+<br>
+<code>NSSOCSP on</code><br>
+<br>
 <big><big>NSSCipherSuite<br>
 </big></big><br>
 A space-separated list of the SSL ciphers used, with the prefix <code>+</code>