[v9_10] clarify nsupdate -y

3815.   [doc]           Clarify "nsupdate -y" usage in man page. [RT #35808]

diff --git a/CHANGES b/CHANGES
index 1ce6916910fb623ebcc2e16cf158dd3f96fd0e9a..0b065329371e6cbd28e98cd7a5a8fec9bcfb7bc2 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,5 @@
+3815.  [doc]           Clarify "nsupdate -y" usage in man page. [RT #35808]
+
        --- 9.10.0 released ---
 
 3810.  [bug]           Work around broken nameservers that fail to ignore

diff --git a/bin/nsupdate/nsupdate.docbook b/bin/nsupdate/nsupdate.docbook
index a2156beb9aca7f7c27182ce4ac42cf81f50f2d17..323d5132a92ed76b8f42dcea893c19dbf99dad9d 100644 (file)
--- a/bin/nsupdate/nsupdate.docbook
+++ b/bin/nsupdate/nsupdate.docbook
@@ -20,7 +20,7 @@
 
 <refentry id="man.nsupdate">
   <refentryinfo>
-    <date>March 10, 2012</date>
+    <date>April 18, 2014</date>
   </refentryinfo>
   <refmeta>
     <refentrytitle><application>nsupdate</application></refentrytitle>
@@ -161,7 +161,13 @@
       <optional><parameter>hmac:</parameter></optional><parameter>keyname:secret.</parameter>
       <parameter>keyname</parameter> is the name of the key, and
       <parameter>secret</parameter> is the base64 encoded shared secret.
-      Use of the <option>-y</option> option is discouraged because the
+      <parameter>hmac</parameter> is the name of the key algorithm;
+      valid choices are <literal>hmac-md5</literal>,
+      <literal>hmac-sha1</literal>, <literal>hmac-sha224</literal>,
+      <literal>hmac-sha256</literal>, <literal>hmac-sha384</literal>, or
+      <literal>hmac-sha512</literal>.  If <parameter>hmac</parameter>
+      is not specified, the default is <literal>hmac-md5</literal>.
+      NOTE: Use of the <option>-y</option> option is discouraged because the
       shared secret is supplied as a command line argument in clear text.
       This may be visible in the output from
       <citerefentry>