From: Jeremy Harris <jgh146exb@wizmail.org>
Date: Sat, 23 Nov 2019 22:21:00 +0000 (+0000)
Subject: Docs: gsasl auth channel-binding now also usable under OpenSSL
X-Git-Url: https://git.exim.org/users/jgh/exim.git/commitdiff_plain/bda253e55534a96a3c1fd9747121c46e6507ed32?hp=a3df157980b463b89d71a3f12d88abe5bad857dc

Docs: gsasl auth channel-binding now also usable under OpenSSL
---

diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt
index a93f61182..0e7d7655c 100644
--- a/doc/doc-docbook/spec.xfpt
+++ b/doc/doc-docbook/spec.xfpt
@@ -27460,9 +27460,11 @@ This should have meant that certificate identity and verification becomes a
 non-issue, as a man-in-the-middle attack will cause the correct client and
 server to see different identifiers and authentication will fail.
 
-This is currently only supported when using the GnuTLS library.  This is
+.new
+This is
 only usable by mechanisms which support "channel binding"; at time of
 writing, that's the SCRAM family.
+.wen
 
 This defaults off to ensure smooth upgrade across Exim releases, in case
 this option causes some clients to start failing.  Some future release