From: Luca Toscano <elukey@apache.org>
Date: Fri, 15 Sep 2017 11:09:19 +0000 (+0000)
Subject: Documentation rebuild
X-Git-Tag: 2.5.0-alpha~121
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=18a97c66cccfc4422d49c1e6d0f6ca78e220c6af;p=thirdparty%2Fapache%2Fhttpd.git

Documentation rebuild

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1808446 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/docs/manual/mod/mod_md.html.en b/docs/manual/mod/mod_md.html.en
index ec1df0cffc2..36fd2b03652 100644
--- a/docs/manual/mod/mod_md.html.en
+++ b/docs/manual/mod/mod_md.html.en
@@ -510,6 +510,17 @@ MDRenewWindow 10%</pre>
   MDRequireHttps permanent
 &lt;/ManagedDomain&gt;</pre>
 </div>
+            <p>When you configure MDRequireHttps permanent, an additional security 
+            feature is automatically applied: HSTS. This adds the header 
+            Strict-Transport-Security to responses sent out via https:. 
+            Basically, this instructs the browser to only perform secure 
+            communications with that domain. This instruction holds for the 
+            amount of time specified in the header as 'max-age'. 
+            This is about half a year as generated by mod_md.
+            </p><p>
+            It is therefore advisable to first test the MDRequireHttps temporary 
+            configuration and switch to permanent only once that works satisfactory.
+            </p>
         
 </div>
 <div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div>