From ca2015a617842fed3d36ed4dcbbf8d5e27bc5216 Mon Sep 17 00:00:00 2001 From: "Dr. Stephen Henson" Date: Tue, 15 Jul 2014 20:22:39 +0100 Subject: [PATCH] Clarify -Verify and PSK. PR#3452 --- doc/apps/s_server.pod | 3 +++ 1 file changed, 3 insertions(+) diff --git a/doc/apps/s_server.pod b/doc/apps/s_server.pod index 3f657c9490..a2e7945624 100644 --- a/doc/apps/s_server.pod +++ b/doc/apps/s_server.pod @@ -193,6 +193,9 @@ the client. With the B<-verify> option a certificate is requested but the client does not have to send one, with the B<-Verify> option the client must supply a certificate or an error occurs. +If the ciphersuite cannot request a client certificate (for example an +anonymous ciphersuite or PSK) this option has no effect. + =item B<-crl_check>, B<-crl_check_all> Check the peer certificate has not been revoked by its CA. -- 2.25.1