Clarify that "CAFile" is not set by default

diff --git a/doc/sample-ngircd.conf.tmpl b/doc/sample-ngircd.conf.tmpl
index 5f9cb9eb2a40ae8e36715f5967b4f295d490118f..2a08bb43e309c435bdf59393ce957aad94b52388 100644 (file)
--- a/doc/sample-ngircd.conf.tmpl
+++ b/doc/sample-ngircd.conf.tmpl
@@ -273,7 +273,8 @@
        # is only available when ngIRCd is compiled with support for SSL!
        # So don't forget to remove the ";" above if this is the case ...
 
        # is only available when ngIRCd is compiled with support for SSL!
        # So don't forget to remove the ";" above if this is the case ...
 

-       # SSL Trusted CA Certificates File (for verifying peer certificates)
+       # SSL Trusted CA Certificates File for verifying peer certificates.
+       # (Default: not set; so no certificates are trusted)

        ;CAFile = /etc/ssl/CA/cacert.pem
 
        # Certificate Revocation File (for marking otherwise valid
        ;CAFile = /etc/ssl/CA/cacert.pem
 
        # Certificate Revocation File (for marking otherwise valid

diff --git a/man/ngircd.conf.5.tmpl b/man/ngircd.conf.5.tmpl
index 66d3598d4b4114631217812b5a674f89286f12b4..68ee90931f1d71a1b4fe8e857a29c8bfe5c37e91 100644 (file)
--- a/man/ngircd.conf.5.tmpl
+++ b/man/ngircd.conf.5.tmpl
@@ -399,7 +399,7 @@ when it is compiled with support for SSL using OpenSSL or GnuTLS!
 .TP
 \fBCAFile\fR (string)
 Filename pointing to the Trusted CA Certificates. This is required for
 .TP
 \fBCAFile\fR (string)
 Filename pointing to the Trusted CA Certificates. This is required for

-verifying peer certificates.
+verifying peer certificates. Default: not set, so no certificates are trusted.

 .TP
 \fBCertFile\fR (string)
 SSL Certificate file of the private server key.
 .TP
 \fBCertFile\fR (string)
 SSL Certificate file of the private server key.