ldap-conf-tls-cacertdir

Gbp-Pq: Name ldap-conf-tls-cacertdir

diff --git a/doc/man/man5/ldap.conf.5 b/doc/man/man5/ldap.conf.5
index e6ac5cf3b94e698f86132926be17c4499f67077d..7ad2c98139f5cbf886cf02d8214f8da0a7b4a442 100644 (file)
--- a/doc/man/man5/ldap.conf.5
+++ b/doc/man/man5/ldap.conf.5
@@ -319,7 +319,7 @@ certificates in separate individual files. The
 .B TLS_CACERT
 is always used before
 .B TLS_CACERTDIR.
-This parameter is ignored with GnuTLS.
+This parameter is ignored with GnuTLS. On Debian openldap is linked against GnuTLS.
 
 When using Mozilla NSS, <path> may contain a Mozilla NSS cert/key
 database.  If <path> contains a Mozilla NSS cert/key database and
@@ -436,7 +436,7 @@ This parameter is ignored with GnuTLS.
 Specifies the file to obtain random bits from when /dev/[u]random is
 not available. Generally set to the name of the EGD/PRNGD socket.
 The environment variable RANDFILE can also be used to specify the filename.
-This parameter is ignored with GnuTLS and Mozilla NSS.
+This parameter is ignored with GnuTLS and Mozilla NSS. On Debian openldap is linked against GnuTLS.
 .TP
 .B TLS_REQCERT <level>
 Specifies what checks to perform on server certificates in a TLS session,
@@ -500,7 +500,7 @@ Specifies if the Certificate Revocation List (CRL) of the CA should be
 used to verify if the server certificates have not been revoked. This
 requires
 .B TLS_CACERTDIR
-parameter to be set. This parameter is ignored with GnuTLS and Mozilla NSS.
+parameter to be set. This parameter is ignored with GnuTLS and Mozilla NSS. On Debian openldap is linked against GnuTLS.
 .B <level>
 can be specified as one of the following keywords:
 .RS