Hi, found a few typos in the ca.1ssl manpage of Centos/RHEL 5.5. Appear in upstream so I'm submitting here. Short and unified diffs below against openssl-1.0.0c.tar.gz of 2nd December 2010 (latest on website).
Filepath is openssl-1.0.0c/doc/apps/ca.pod Thanks, John. -------------------------------------------------------------------------- $ diff ca.pod ca_new.pod 123c123 < Cerificate requests signed with a different key are ignored. If --- > Certificate requests signed with a different key are ignored. If 240c240 < this option causes the -subj argument to be interpretedt with full --- > this option causes the -subj argument to be interpreted with full 277c277 < In practive B<removeFromCRL> is not particularly useful because it is only used --- > In practice B<removeFromCRL> is not particularly useful because it is only > used 633c633 < Cancelling some commands by refusing to certify a certificate can --- > Canceling some commands by refusing to certify a certificate can 652c652 < this when the certificate is displayed then this will hand the requestor --- > this when the certificate is displayed then this will hand the requester -------------------------------------------------------------------------- $ diff ca.pod ca_new.pod -u --- ca.pod 2009-04-10 12:25:53.000000000 +0100 +++ ca_new.pod 2011-01-13 12:39:38.000000000 +0000 @@ -120,7 +120,7 @@ indicates the issued certificates are to be signed with the key the certificate requests were signed with (given with B<-keyfile>). -Cerificate requests signed with a different key are ignored. If +Certificate requests signed with a different key are ignored. If B<-spkac>, B<-ss_cert> or B<-gencrl> are given, B<-selfsign> is ignored. @@ -237,7 +237,7 @@ =item B<-multivalue-rdn> -this option causes the -subj argument to be interpretedt with full +this option causes the -subj argument to be interpreted with full support for multivalued RDNs. Example: I</DC=org/DC=OpenSSL/DC=users/UID=123456+CN=John Doe> @@ -274,7 +274,7 @@ B<certificateHold> or B<removeFromCRL>. The matching of B<reason> is case insensitive. Setting any revocation reason will make the CRL v2. -In practive B<removeFromCRL> is not particularly useful because it is only used +In practice B<removeFromCRL> is not particularly useful because it is only used in delta CRLs which are not currently implemented. =item B<-crl_hold instruction> @@ -630,7 +630,7 @@ option can be used. The behaviour should be more friendly and configurable. -Cancelling some commands by refusing to certify a certificate can +Canceling some commands by refusing to certify a certificate can create an empty file. =head1 WARNINGS @@ -649,7 +649,7 @@ not taken then it can be a security risk. For example if a certificate request contains a basicConstraints extension with CA:TRUE and the B<copy_extensions> value is set to B<copyall> and the user does not spot -this when the certificate is displayed then this will hand the requestor +this when the certificate is displayed then this will hand the requester a valid CA certificate. This situation can be avoided by setting B<copy_extensions> to B<copy> ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
