summaryrefslogtreecommitdiffstats
path: root/secure/usr.bin/openssl/man/ocsp.1
diff options
context:
space:
mode:
Diffstat (limited to 'secure/usr.bin/openssl/man/ocsp.1')
-rw-r--r--secure/usr.bin/openssl/man/ocsp.112
1 files changed, 6 insertions, 6 deletions
diff --git a/secure/usr.bin/openssl/man/ocsp.1 b/secure/usr.bin/openssl/man/ocsp.1
index 9998d8f..b977601 100644
--- a/secure/usr.bin/openssl/man/ocsp.1
+++ b/secure/usr.bin/openssl/man/ocsp.1
@@ -1,4 +1,4 @@
-.\" Automatically generated by Pod::Man v1.37, Pod::Parser v1.35
+.\" Automatically generated by Pod::Man v1.37, Pod::Parser v1.37
.\"
.\" Standard preamble:
.\" ========================================================================
@@ -129,7 +129,7 @@
.\" ========================================================================
.\"
.IX Title "OCSP 1"
-.TH OCSP 1 "2007-03-15" "0.9.8e" "OpenSSL"
+.TH OCSP 1 "2009-06-14" "0.9.8k" "OpenSSL"
.SH "NAME"
ocsp \- Online Certificate Status Protocol utility
.SH "SYNOPSIS"
@@ -196,7 +196,7 @@ specify output filename, default is standard output.
.IX Item "-issuer filename"
This specifies the current issuer certificate. This option can be used
multiple times. The certificate specified in \fBfilename\fR must be in
-\&\s-1PEM\s0 format.
+\&\s-1PEM\s0 format. This option \fB\s-1MUST\s0\fR come before any \fB\-cert\fR options.
.IP "\fB\-cert filename\fR" 4
.IX Item "-cert filename"
Add the certificate \fBfilename\fR to the request. The issuer certificate
@@ -256,14 +256,14 @@ certificate from the response: this option can be used to supply the necessary
certificate in such cases.
.IP "\fB\-trust_other\fR" 4
.IX Item "-trust_other"
-the certificates specified by the \fB\-verify_certs\fR option should be explicitly
+the certificates specified by the \fB\-verify_other\fR option should be explicitly
trusted and no additional checks will be performed on them. This is useful
when the complete responder certificate chain is not available or trusting a
root \s-1CA\s0 is not appropriate.
.IP "\fB\-VAfile file\fR" 4
.IX Item "-VAfile file"
file containing explicitly trusted responder certificates. Equivalent to the
-\&\fB\-verify_certs\fR and \fB\-trust_other\fR options.
+\&\fB\-verify_other\fR and \fB\-trust_other\fR options.
.IP "\fB\-noverify\fR" 4
.IX Item "-noverify"
don't attempt to verify the \s-1OCSP\s0 response signature or the nonce values. This
@@ -273,7 +273,7 @@ of the responders certificate.
.IX Item "-no_intern"
ignore certificates contained in the \s-1OCSP\s0 response when searching for the
signers certificate. With this option the signers certificate must be specified
-with either the \fB\-verify_certs\fR or \fB\-VAfile\fR options.
+with either the \fB\-verify_other\fR or \fB\-VAfile\fR options.
.IP "\fB\-no_signature_verify\fR" 4
.IX Item "-no_signature_verify"
don't check the signature on the \s-1OCSP\s0 response. Since this option tolerates invalid
OpenPOWER on IntegriCloud