From 48e272b347f56e79ea2fbe747a34c5e45cc2286b Mon Sep 17 00:00:00 2001
From: Glenn Strauss <gstrauss@gluelogic.com>
Date: Sat, 1 Feb 2020 13:46:06 -0500
Subject: [doc] add link to wiki in doc/outdated/ssl.txt

---
 doc/outdated/ssl.txt | 19 ++++++++++++-------
 1 file changed, 12 insertions(+), 7 deletions(-)

(limited to 'doc')

diff --git a/doc/outdated/ssl.txt b/doc/outdated/ssl.txt
index 447da4e5..f9ee9537 100644
--- a/doc/outdated/ssl.txt
+++ b/doc/outdated/ssl.txt
@@ -21,7 +21,10 @@ Module: core
 Description
 ===========
 
-lighttpd supports SSLv2 and SSLv3 if it is compiled against openssl.
+lighttpd supports TLS with mod_openssl.
+
+The latest lighttpd SSL/TLS doc can be found at:
+https://redmine.lighttpd.net/projects/lighttpd/wiki/Docs_SSL
 
 Configuration
 -------------
@@ -32,11 +35,10 @@ certificate and have to enable the SSL engine.::
   ssl.engine = "enable"
   ssl.pemfile = "/path/to/server.pem"
 
-The HTTPS protocol does not allow you to use name-based virtual
-hosting with SSL. If you want to run multiple SSL servers with
-one lighttpd instance you must use IP-based virtual hosting: ::
+To enable SSL for a specific port, put the directives within a
+$SERVER["socket"] condition: ::
 
-  $SERVER["socket"] == "10.0.0.1:443" {
+  $SERVER["socket"] == "*:443" {
     ssl.engine                  = "enable"
     ssl.pemfile                 = "www.example.org.pem"
     server.name                 = "www.example.org"
@@ -45,11 +47,14 @@ one lighttpd instance you must use IP-based virtual hosting: ::
   }
 
 If you have a .crt and a .key file, cat them together into a
-single PEM file:
-::
+single PEM file: ::
 
   $ cat host.key host.crt > host.pem
 
+or provide both ssl.pemfile and ssl.privkey directives: ::
+
+  ssl.pemfile = "host.crt"
+  ssl.privkey = "host.key"
 
 Self-Signed Certificates
 ------------------------
-- 
cgit v1.2.1