From 3689f0f6cca71aed0f63afbf0814e7ba93a03d2f Mon Sep 17 00:00:00 2001
From: Tobias Brunner <tobias@strongswan.org>
Date: Mon, 29 Oct 2012 10:06:43 +0100
Subject: FQDNs are actually not resolved when loading secrets

---
 man/ipsec.secrets.5.in | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

(limited to 'man/ipsec.secrets.5.in')

diff --git a/man/ipsec.secrets.5.in b/man/ipsec.secrets.5.in
index 5a61688c6..319d4856b 100644
--- a/man/ipsec.secrets.5.in
+++ b/man/ipsec.secrets.5.in
@@ -37,13 +37,7 @@ by whitespace. If no ID selectors are specified the line must start with a
 colon.
 .LP
 A selector is an IP address, a Fully Qualified Domain Name, user@FQDN,
-\fB%any\fP or \fB%any6\fP (other kinds may come).  An IP address may be written
-in the familiar dotted quad form or as a domain name to be looked up
-when the file is loaded.
-In many cases it is a bad idea to use domain names because
-the name server may not be running or may be insecure.  To denote a
-Fully Qualified Domain Name (as opposed to an IP address denoted by
-its domain name), precede the name with an at sign (\fB@\fP).
+\fB%any\fP or \fB%any6\fP (other kinds may come).
 .LP
 Matching IDs with selectors is fairly straightforward: they have to be
 equal.  In the case of a ``Road Warrior'' connection, if an equal
-- 
cgit v1.2.3