Remove reference to old DH files.

author Pauli <paul.dale@oracle.com>

Thu, 12 Mar 2020 22:23:27 +0000 (08:23 +1000)

committer Pauli <paul.dale@oracle.com>

Sat, 14 Mar 2020 05:05:56 +0000 (15:05 +1000)
author Pauli <paul.dale@oracle.com>
Thu, 12 Mar 2020 22:23:27 +0000 (08:23 +1000)
committer Pauli <paul.dale@oracle.com>
Sat, 14 Mar 2020 05:05:56 +0000 (15:05 +1000)
diff --git a/doc/man3/SSL_CTX_set_tmp_dh_callback.pod b/doc/man3/SSL_CTX_set_tmp_dh_callback.pod

index c8d25f4573b58beea2da7011e3baefa284e5cf27..9b577bdd86abd6e08bba9227a346d881e6c76d87 100644 (file)
--- a/doc/man3/SSL_CTX_set_tmp_dh_callback.pod
+++ b/doc/man3/SSL_CTX_set_tmp_dh_callback.pod
@@ -62,14 +62,6 @@ generate their own DH parameters during the installation process using the
  openssl L<openssl-dhparam(1)> application. This application
  guarantees that "strong" primes are used.
  
-Files dh2048.pem, and dh4096.pem in the 'apps' directory of the current
-version of the OpenSSL distribution contain two of the MODP Diffie-Hellman
-groups for IKE as per RFC 3526.  These files can be converted into C code
-using the B<-C> option of the L<openssl-dhparam(1)> application. Generation
-of custom DH parameters during installation should still be preferred to
-stop an attacker from specializing on a commonly used group. File dh1024.pem
-contains old parameters that must not be used by applications.
-
  An application may either directly specify the DH parameters or
  can supply the DH parameters via a callback function.
author	Pauli <paul.dale@oracle.com>
	Thu, 12 Mar 2020 22:23:27 +0000 (08:23 +1000)
committer	Pauli <paul.dale@oracle.com>
	Sat, 14 Mar 2020 05:05:56 +0000 (15:05 +1000)