summaryrefslogtreecommitdiff
path: root/src/usr.bin/openssl/openssl.1 (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* shorten the ocsp text; ok beckjmc2016-08-191-199/+71
|
* shorten the nseq text;jmc2016-08-181-41/+17
|
* shorten genrsa; ok jsingjmc2016-08-161-42/+18
|
* shorten genpkey; ok guentherjmc2016-08-141-78/+23
|
* shorten gendsa;jmc2016-08-131-20/+12
|
* trim errstr, and zap gendh (deprecated) entirely;jmc2016-08-121-26/+1
|
* shorten openssl enc, with help from jsing;jmc2016-08-121-201/+39
| | | | ok jsing beck
* shorten ecparam;jmc2016-08-101-102/+50
|
* trim the ec text;jmc2016-08-091-92/+39
|
* trim the dsaparam section; ok guentherjmc2016-08-081-56/+36
|
* shorten the openssl dsa text;jmc2016-08-051-69/+35
|
* shorten the openssl dhparam text;jmc2016-08-031-84/+32
| | | | guenther helped rewrite the -dsaparam parts.
* shorten the openssl dgst text; in particular, do not try tojmc2016-08-011-53/+24
| | | | list all the available digests;
* remove HISTORY: it was a nonsense;jmc2016-07-281-25/+1
|
* some text cutting, after feedback from jsing;jmc2016-07-281-12/+12
|
* rework crl2pkcs7; with help from jsingjmc2016-07-231-57/+18
|
* rework DESCRIPTION a little: no-command seems clearer than no-XXX;jmc2016-07-211-17/+12
|
* rename NOTES to COMMON SYNTAX (explains itself better); rework thejmc2016-07-211-43/+44
| | | | | | passphrase section a little; move the DER|PEM stuff in there to help avoid text repetition, and prefer the lowercase (less keys to press); adjust ENVIRONMENT to format a little more nicely;
* strip back openssl crl somewhat: remove the examplesjmc2016-07-211-41/+21
| | | | and move any relevant text into the main body;
* strip back openssl ciphers:jmc2016-07-201-106/+60
| | | | | | - rearrange the descriptions of -V and -v to read more logically - move the cipherlist text into the cipherlist description - zap examples
* strip back openssl ca: in particular remove some excessively wordy sections,jmc2016-07-191-337/+120
| | | | | move some other sections into more relevant places, and remove the example ca file;
* strip back asn1parse; ok beck jsingjmc2016-07-171-108/+27
| | | | description of -out altered on jsing's advice
* since we no longer pull source directly from openssl, the time isjmc2016-07-161-427/+57
| | | | | | | | right to try and trim some of the excess from this page. begin now by cutting some of the fluff from the start. the section on pass phrase arguments goes to the end of the page: it;s in the way for now.
* word fix from previous; ok sthenjmc2016-02-121-3/+3
|
* sslv3 has been removed;jmc2016-02-081-16/+21
| | | | | prompted by a mail from jiri navratil help/ok sthen
* more e-mail -> emailmmcc2015-12-241-3/+3
|
* remove vestigial bits of sha-0 and md2 from openssl(1)bcook2015-09-211-13/+10
| | | | | | | | Noted by kinichiro on github. We probably need a better way to indicate the list of message digests that are allowed, as the current ones are nowhere near exhaustive (sigh - guenther@) OK guenther@ jmc@
* Temporarily revive MD4 for MS CHAP support.doug2015-09-141-7/+10
|
* Remove MD4 support from LibreSSL.doug2015-09-131-9/+6
| | | | | | | | MD4 should have been removed a long time ago. Also, RFC 6150 moved it to historic in 2011. Rides the major crank from removing SHA-0. Discussed with many including beck@, millert@, djm@, sthen@ ok jsing@, input + ok bcook@
* nc(1) seems worth an Xr in SEE ALSO now;jmc2015-09-131-1/+2
|
* document extra algorithms available with openssl speed commandbcook2015-09-131-1/+4
| | | | ok jmc@
* tweak STANDARDS;jmc2015-09-131-3/+3
|
* Nuke SSLEAY_CONF -- a backwards compatibility environment variable thatlteo2015-09-121-5/+2
| | | | | | | | | | has been superseded by OPENSSL_CONF and discouraged from use for almost 16 years. "Definately ok" jsing@ "burn it" deraadt@ "Kill it with fire" miod@ "KILL IT WITH FIRE!!! BURN!!!!" beck@
* Remove engine command and parameters from openssl(1).bcook2015-09-111-354/+14
| | | | | | | We do not have any builtin or dynamic engines, meaning openssl(1) has no way to use the engine command or parameters at all. ok jsing@
* shutdown (n.) -> shut down (v.);jmc2015-09-111-2/+2
|
* Change the default behavior of the s_time command so that it willlteo2015-09-111-2/+7
| | | | | | | | | | | | | | | | perform a proper shutdown by sending a "close notify" alert to the server. This allows s_time to benchmark a full TLS connection more accurately. Introduce a new flag called -no_shutdown to make s_time adopt the previous behavior (i.e. shut down the connection without notifying the server) so that comparisons can still be made with OpenSSL's version. The idea of using a flag (which replaces a #define) was suggested by bcook@. Thanks to millert@ and miod@ as well for their feedback on an earlier diff which resulted in this change. ok bcook@ beck@
* Improve openssl s_client -starttls xmpp support.landry2015-08-111-2/+10
| | | | | | | | | From https://rt.openssl.org/Ticket/Display.html?id=2860&user=guest&pass=guest - add a -xmpphost option to specify the xmpp virtual host - fix an infinite loop when the vhost isnt what the server expects - fix communication with openfire & prosody servers with tweaks & ok bcook@ doug@ manpage bits jmc@
* remove ssl3 bits; ok dougjmc2015-08-021-58/+14
|
* use file system path (.Pa) semantic markup macros where appropriate.sobrado2015-07-271-7/+7
| | | | ok jmc@
* switch "openssl dhparam" default from 512 to 2048 bits, ok jsing@sthen2015-07-081-3/+3
|
* Remove obsolete MDC-2DES from libcrypto.doug2015-06-201-6/+4
| | | | ok deraadt@ jsing@ miod@
* spelling fixes from theo buehler;jmc2015-06-181-4/+4
|
* Reduce usage of predefined strings in manpages.bentley2015-02-281-7/+7
| | | | | | | | | | | Predefined strings are not very portable across troff implementations, and they make the source much harder to read. Usually the intended character can be written directly. No output changes, except for two instances where the incorrect escape was used in the first place. tweaks + ok schwarze@
* Use "In" to mark up include files, instead of wrongly wrapping with Aq.bentley2015-02-151-3/+3
| | | | | | | Aq is not the same as <> in non-ASCII situations, so this caused incorrect output in some places. And it provided no semantics besides. ok schwarze@
* Document the openssl s_client -proxy feature.bluhm2015-01-131-2/+14
| | | | OK jmc@
* Zap a reference to .rnd, which is likely the last RANDFILE remnant onlteo2015-01-051-3/+2
| | | | | | this man page. ok jsing@
* Clean up CIPHERS and related sections:lteo2014-12-241-154/+10
| | | | | | | | | | | | | | - Sync cipher strings with the ones that are actually implemented. - Remove CIPHERS SUITE NAMES (the actual cipher suites can be obtained via "openssl ciphers -v"), CIPHERS NOTES, and CIPHERS HISTORY sections. - Stop mentioning export cipher suites since they have already been removed. feedback from deraadt@ and jmc@ ok jmc@
* CA.sh and CA.pl are gonelteo2014-12-191-6/+1
|
* Sync message digest algorithms with the ones actually implemented inlteo2014-12-191-9/+29
| | | | | | "openssl dgst". feedback/ok jmc@
* Mention the -no_tls1_[12] optionsguenther2014-11-231-6/+10
|
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-09-17 02:04:34 +0000