diff options
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/mod_nss.html | 18 |
1 files changed, 17 insertions, 1 deletions
diff --git a/docs/mod_nss.html b/docs/mod_nss.html index 1d9d5d8..3a03c54 100644 --- a/docs/mod_nss.html +++ b/docs/mod_nss.html @@ -349,7 +349,9 @@ Example</span><br style="font-weight: bold;"> <big><big>NSSFIPS</big></big><br> <br> Enables or disables FIPS 140 mode. This replaces the standard -internal PKCS#11 module with a FIPS-enabled one. It also forces the enabled protocols to SSLv3 and TLSv1 and disables all ciphers but the FIPS ones.<br> +internal PKCS#11 module with a FIPS-enabled one. It also forces the +enabled protocols to SSLv3 and TLSv1 and disables all ciphers but the +FIPS ones.<br> <span style="font-weight: bold;"><br> </span>FIPS is disabled by default.<br> <span style="font-weight: bold;"><br> @@ -357,6 +359,20 @@ Example</span><br style="font-weight: bold;"> <br> <code>NSSFIPS on</code><br> <br> +<big><big>NSSOCSP</big></big><br> +<br> +Enables or disables <a + href="http://www.ietf.org/rfc/rfc2560.txt?number=2560">OCSP</a> +(Online Certificate Status Protocol). This allows the server to check +the validity of a client certificate before accepting it.<br> +<br> +<span style="font-weight: bold;"></span>OCSP<span + style="font-weight: bold;"> </span>is disabled by default.<br> +<span style="font-weight: bold;"><br> +Example</span><br style="font-weight: bold;"> +<br> +<code>NSSOCSP on</code><br> +<br> <big><big>NSSCipherSuite<br> </big></big><br> A space-separated list of the SSL ciphers used, with the prefix <code>+</code> |