From 036ed0dbc98e9534079f5606134d013218467d52 Mon Sep 17 00:00:00 2001
From: Jeremy Harris <jgh146exb@wizmail.org>
Date: Mon, 1 Sep 2014 14:54:59 +0100
Subject: [PATCH] Warn on OCSP interaction with DANE

---
 doc/doc-txt/experimental-spec.txt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/doc/doc-txt/experimental-spec.txt b/doc/doc-txt/experimental-spec.txt
index 28591eaf7..769f0229d 100644
--- a/doc/doc-txt/experimental-spec.txt
+++ b/doc/doc-txt/experimental-spec.txt
@@ -1253,7 +1253,9 @@ hosts_request_ocsp includes the string "tls_out_tlsa_usage",
 they are re-expanded in time to control the OCSP request.
 
 This modification of hosts_request_ocsp is only done if
-it has the default value of "*".
+it has the default value of "*".  Admins who change it, and
+those who use hosts_require_ocsp, should consider the interaction
+with DANE in their OCSP settings.
 
 
 For client-side DANE there are two new smtp transport options,
-- 
2.30.2