diff options
Diffstat (limited to 'doc/disfluid.texi')
-rw-r--r-- | doc/disfluid.texi | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/doc/disfluid.texi b/doc/disfluid.texi index bebc61b..d2558b4 100644 --- a/doc/disfluid.texi +++ b/doc/disfluid.texi @@ -190,8 +190,11 @@ because a malicious user could set the identity header. The identity provider can only handle one user. If you want to handle multiple users, it is highly advised to use a different host name for each user, in case the server is accessed from a web browser. You can -set the identity of the user with @samp{--subject}, and the user’s -password with @samp{--encrypted-password}. +set the identity of the user with @samp{--subject}, and write the +user’s password in a file. Pass the file name with +@samp{--encrypted-password-file}. You can pass the encrypted password +directly with @samp{--encrypted-password}, but the encrypted password +will be public. The encrypted password format is defined by the crypt function in the C library. For glibc, it looks like this: |