GnuTLS: Clarify the use of SSLKEYFILE

author Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>

Wed, 12 Feb 2020 22:41:03 +0000 (23:41 +0100)

committer Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>

Wed, 19 Feb 2020 11:02:38 +0000 (12:02 +0100)
author Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
Wed, 12 Feb 2020 22:41:03 +0000 (23:41 +0100)
committer Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
Wed, 19 Feb 2020 11:02:38 +0000 (12:02 +0100)
diff --git a/src/src/tls-gnu.c b/src/src/tls-gnu.c

index 2e69c59369fdbd3f2743380d8454b51a1e0b24ff..826a3fdc555ee51bd0736fa8289a5575e13e6bef 100644 (file)
--- a/src/src/tls-gnu.c
+++ b/src/src/tls-gnu.c
@@ -2307,11 +2307,12 @@ if (TRUE)
    }
  else
    debug_printf("To get keying info for TLS1.3 is hard:\n"
-    " set environment variable SSLKEYLOGFILE to a filename writable by uid exim\n"
-    " add SSLKEYLOGFILE to keep_environment in the exim config\n"
-    " run exim as root\n"
-    " if using sudo, add SSLKEYLOGFILE to env_keep in /etc/sudoers\n"
-    " (works for TLS1.2 also, and saves cut-paste into file)"
+    " Set environment variable SSLKEYLOGFILE to a filename relative to the spool directory,\n"
+    " and make sure it is writable by the Exim runtime user.\n"
+    " Add SSLKEYLOGFILE to keep_environment in the exim config.\n"
+    " Start Exim as root.\n"
+    " If using sudo, add SSLKEYLOGFILE to env_keep in /etc/sudoers\n"
+    " (works for TLS1.2 also, and saves cut-paste into file).\n"
      " Trying to use add_environment for this will not work\n");
  #endif
  }
author	Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
	Wed, 12 Feb 2020 22:41:03 +0000 (23:41 +0100)
committer	Heiko Schlittermann (HS12-RIPE) <hs@schlittermann.de>
	Wed, 19 Feb 2020 11:02:38 +0000 (12:02 +0100)