From: Jean-Frederic Clere Date: Fri, 3 Feb 2017 17:15:05 +0000 (+0000) Subject: Add missing documentation for r1781575 X-Git-Tag: 2.5.0-alpha~702 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7588e207b6934fc90665a61cda326318b40ae947;p=thirdparty%2Fapache%2Fhttpd.git Add missing documentation for r1781575 Fix for PR 46037 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1781580 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/manual/mod/mod_ssl.xml b/docs/manual/mod/mod_ssl.xml index 836c7d40656..75106e4e7e4 100644 --- a/docs/manual/mod/mod_ssl.xml +++ b/docs/manual/mod/mod_ssl.xml @@ -2424,6 +2424,37 @@ Responder), this option should be turned off.

+ +SSLOCSPNoverify +skip the OCSP responder certificates verification +SSLOCSPNoverify On/Off +SSLOCSPNoverify Off +server config +virtual host +Available in httpd 2.5 and later, if using OpenSSL 0.9.7 or later + +

Skip the OCSP responder certificates verification, mostly useful when +testing an OCSP server.

+ + + + + +SSLOCSPResponderCertificateFile +Set of trusted PEM encoded OCSP responder certificates +SSLOCSPResponderCertificateFile file +server config +virtual host +Available in httpd 2.5 and later, if using OpenSSL 0.9.7 or later + +

This supplies a list of trusted OCSP responder certificates to be used +during OCSP responder certificate validation. The supplied certificates are +implicitly trusted without any further validation. This is typically used +where the OCSP responder certificate is self signed or omitted from the OCSP +response.

+ + + SSLOCSPProxyURL Proxy URL to use for OCSP requests