small update for CIPHERS;

author: jmc <> 2003-10-24 09:41:52 +0000
committer: jmc <> 2003-10-24 09:41:52 +0000
commit: c9423a0615f6dadf73060eaa843ac7e53e8ce540 (patch)
tree: 475d5593877a12105861b9280fb6569f1cc899b8
parent: 21155d355a017a5944ad5021c96db75ed391d2b6 (diff)
download: openbsd-c9423a0615f6dadf73060eaa843ac7e53e8ce540.tar.gz
openbsd-c9423a0615f6dadf73060eaa843ac7e53e8ce540.tar.bz2
openbsd-c9423a0615f6dadf73060eaa843ac7e53e8ce540.zip
1 files changed, 15 insertions, 15 deletions
diff --git a/src/usr.sbin/openssl/openssl.1 b/src/usr.sbin/openssl/openssl.1
index cd6ba71ffa..b137d90f09 100644
--- a/src/usr.sbin/openssl/openssl.1
+++ b/src/usr.sbin/openssl/openssl.1
@@ -1,4 +1,4 @@
-.\" $OpenBSD: openssl.1,v 1.18 2003/10/22 16:05:06 jmc Exp $
+.\" $OpenBSD: openssl.1,v 1.19 2003/10/24 09:41:52 jmc Exp $
 .\" ====================================================================
 .\" Copyright (c) 1998-2002 The OpenSSL Project.  All rights reserved.
 .\"
@@ -1312,19 +1312,27 @@ then even if a certificate is issued with CA:TRUE it will not be valid.
 .\"
 .Sh CIPHERS
 .Nm openssl ciphers
-.Op Fl v
+.Op Fl hv
 .Op Fl ssl2 | ssl3 | tls1
 .Op Ar cipherlist
 .Pp
 The
-.Nm cipherlist
+.Nm ciphers
 command converts
 .Nm OpenSSL
 cipher lists into ordered SSL cipher preference lists.
 It can be used as a test tool to determine the appropriate cipherlist.
 .Pp
 The options are as follows:
-.Bl -tag -width "XXXX"
+.Bl -tag -width "XXXXXX"
+.It Fl h , \&?
+Print a brief usage message.
+.It Fl ssl2
+Only include SSL v2 ciphers.
+.It Fl ssl3
+Only include SSL v3 ciphers.
+.It Fl tls1
+Only include TLS v1 ciphers.
 .It Fl v
 Verbose option.
 List ciphers with a complete description of protocol version
@@ -1338,14 +1346,6 @@ Note that without the
 option, ciphers may seem to appear twice in a cipher list;
 this is when similar ciphers are available for
 SSL v2 and for SSL v3/TLS v1.
-.It Fl ssl2
-Only include SSL v2 ciphers.
-.It Fl ssl3
-Only include SSL v3 ciphers.
-.It Fl tls1
-Only include TLS v1 ciphers.
-.It Fl h , \&?
-Print a brief usage message.
 .It Ar cipherlist
 A cipher list to convert to a cipher preference list.
 If it is not included, then the default cipher list will be used.
@@ -1439,7 +1439,7 @@ which is not included by
 .Ar COMPLEMENTOFALL
 if necessary).
 .It Ar ALL
-All ciphers suites except the
+All cipher suites except the
 .Ar eNULL
 ciphers which must be explicitly enabled.
 .It Ar COMPLEMENTOFALL
@@ -1462,13 +1462,13 @@ algorithms, but excluding export cipher suites.
 Export encryption algorithms.
 Including 40- and 56-bit algorithms.
 .It Ar EXPORT40
-40-bit export encryption algorithms
+40-bit export encryption algorithms.
 .It Ar EXPORT56
 56-bit export encryption algorithms.
 .It Ar eNULL , NULL
 The
 .Qq NULL
-ciphers; that is those offering no encryption.
+ciphers; that is, those offering no encryption.
 Because these offer no encryption at all and are a security risk,
 they are disabled unless explicitly included.
 .It Ar aNULL
author	jmc <>	2003-10-24 09:41:52 +0000
committer	jmc <>	2003-10-24 09:41:52 +0000
commit	c9423a0615f6dadf73060eaa843ac7e53e8ce540 (patch)
tree	475d5593877a12105861b9280fb6569f1cc899b8
parent	21155d355a017a5944ad5021c96db75ed391d2b6 (diff)
download	openbsd-c9423a0615f6dadf73060eaa843ac7e53e8ce540.tar.gz openbsd-c9423a0615f6dadf73060eaa843ac7e53e8ce540.tar.bz2 openbsd-c9423a0615f6dadf73060eaa843ac7e53e8ce540.zip

diff --git a/src/usr.sbin/openssl/openssl.1 b/src/usr.sbin/openssl/openssl.1 index cd6ba71ffa..b137d90f09 100644 --- a/src/usr.sbin/openssl/openssl.1 +++ b/src/usr.sbin/openssl/openssl.1
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: openssl.1,v 1.18 2003/10/22 16:05:06 jmc Exp $	1	.\" $OpenBSD: openssl.1,v 1.19 2003/10/24 09:41:52 jmc Exp $
2	.\" ====================================================================	2	.\" ====================================================================
3	.\" Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved.	3	.\" Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved.
4	.\"	4	.\"
@@ -1312,19 +1312,27 @@ then even if a certificate is issued with CA:TRUE it will not be valid.
1312	.\"	1312	.\"
1313	.Sh CIPHERS	1313	.Sh CIPHERS
1314	.Nm openssl ciphers	1314	.Nm openssl ciphers
1315	.Op Fl v	1315	.Op Fl hv
1316	.Op Fl ssl2 \| ssl3 \| tls1	1316	.Op Fl ssl2 \| ssl3 \| tls1
1317	.Op Ar cipherlist	1317	.Op Ar cipherlist
1318	.Pp	1318	.Pp
1319	The	1319	The
1320	.Nm cipherlist	1320	.Nm ciphers
1321	command converts	1321	command converts
1322	.Nm OpenSSL	1322	.Nm OpenSSL
1323	cipher lists into ordered SSL cipher preference lists.	1323	cipher lists into ordered SSL cipher preference lists.
1324	It can be used as a test tool to determine the appropriate cipherlist.	1324	It can be used as a test tool to determine the appropriate cipherlist.
1325	.Pp	1325	.Pp
1326	The options are as follows:	1326	The options are as follows:
1327	.Bl -tag -width "XXXX"	1327	.Bl -tag -width "XXXXXX"
		1328	.It Fl h , \&?
		1329	Print a brief usage message.
		1330	.It Fl ssl2
		1331	Only include SSL v2 ciphers.
		1332	.It Fl ssl3
		1333	Only include SSL v3 ciphers.
		1334	.It Fl tls1
		1335	Only include TLS v1 ciphers.
1328	.It Fl v	1336	.It Fl v
1329	Verbose option.	1337	Verbose option.
1330	List ciphers with a complete description of protocol version	1338	List ciphers with a complete description of protocol version
@@ -1338,14 +1346,6 @@ Note that without the
1338	option, ciphers may seem to appear twice in a cipher list;	1346	option, ciphers may seem to appear twice in a cipher list;
1339	this is when similar ciphers are available for	1347	this is when similar ciphers are available for
1340	SSL v2 and for SSL v3/TLS v1.	1348	SSL v2 and for SSL v3/TLS v1.
1341	.It Fl ssl2
1342	Only include SSL v2 ciphers.
1343	.It Fl ssl3
1344	Only include SSL v3 ciphers.
1345	.It Fl tls1
1346	Only include TLS v1 ciphers.
1347	.It Fl h , \&?
1348	Print a brief usage message.
1349	.It Ar cipherlist	1349	.It Ar cipherlist
1350	A cipher list to convert to a cipher preference list.	1350	A cipher list to convert to a cipher preference list.
1351	If it is not included, then the default cipher list will be used.	1351	If it is not included, then the default cipher list will be used.
@@ -1439,7 +1439,7 @@ which is not included by
1439	.Ar COMPLEMENTOFALL	1439	.Ar COMPLEMENTOFALL
1440	if necessary).	1440	if necessary).
1441	.It Ar ALL	1441	.It Ar ALL
1442	All ciphers suites except the	1442	All cipher suites except the
1443	.Ar eNULL	1443	.Ar eNULL
1444	ciphers which must be explicitly enabled.	1444	ciphers which must be explicitly enabled.
1445	.It Ar COMPLEMENTOFALL	1445	.It Ar COMPLEMENTOFALL
@@ -1462,13 +1462,13 @@ algorithms, but excluding export cipher suites.
1462	Export encryption algorithms.	1462	Export encryption algorithms.
1463	Including 40- and 56-bit algorithms.	1463	Including 40- and 56-bit algorithms.
1464	.It Ar EXPORT40	1464	.It Ar EXPORT40
1465	40-bit export encryption algorithms	1465	40-bit export encryption algorithms.
1466	.It Ar EXPORT56	1466	.It Ar EXPORT56
1467	56-bit export encryption algorithms.	1467	56-bit export encryption algorithms.
1468	.It Ar eNULL , NULL	1468	.It Ar eNULL , NULL
1469	The	1469	The
1470	.Qq NULL	1470	.Qq NULL
1471	ciphers; that is those offering no encryption.	1471	ciphers; that is, those offering no encryption.
1472	Because these offer no encryption at all and are a security risk,	1472	Because these offer no encryption at all and are a security risk,
1473	they are disabled unless explicitly included.	1473	they are disabled unless explicitly included.
1474	.It Ar aNULL	1474	.It Ar aNULL