From: Ruediger Pluem <rpluem@apache.org>
Date: Tue, 13 Oct 2009 16:20:03 +0000 (+0000)
Subject: * Link note to SSLProxyCheckPeerCN and SSLProxyCheckPeerExpire directives which
X-Git-Tag: 2.2.15~193
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=f79105419bfe17dfbf8bbfd3ed90952db0828b8a;p=thirdparty%2Fapache%2Fhttpd.git

* Link note to SSLProxyCheckPeerCN and SSLProxyCheckPeerExpire directives which
  can be used to fix the warning.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@824832 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/docs/manual/mod/mod_ssl.xml b/docs/manual/mod/mod_ssl.xml
index 402e366c97f..e44945046ac 100644
--- a/docs/manual/mod/mod_ssl.xml
+++ b/docs/manual/mod/mod_ssl.xml
@@ -1473,7 +1473,12 @@ the proxy does not guarantee that the SSL connection to the backend
 server is "secure" beyond the fact that the certificate is signed by
 one of the CAs configured using the
 <directive>SSLProxyCACertificatePath</directive> and/or
-<directive>SSLProxyCACertificateFile</directive> directives.</p>
+<directive>SSLProxyCACertificateFile</directive> directives.
+In order to get this check done please have a look at
+<directive>SSLProxyCheckPeerCN</directive> and
+<directive>SSLProxyCheckPeerExpire</directive> directives which are off by
+default.
+</p>
 </note>
 
 <p>