From c7f76958d7017fa7595c64e7142c765887b58407 Mon Sep 17 00:00:00 2001
From: Andreas Steffen <andreas@strongswan.org>
Date: Fri, 19 Jun 2009 10:41:38 +0200
Subject: authby=pubkey is now the default authentication

---
 src/starter/ipsec.conf.5 | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

(limited to 'src/starter/ipsec.conf.5')

diff --git a/src/starter/ipsec.conf.5 b/src/starter/ipsec.conf.5
index ee830bff3..31e676324 100644
--- a/src/starter/ipsec.conf.5
+++ b/src/starter/ipsec.conf.5
@@ -238,13 +238,16 @@ acceptable values are
 .B secret
 or
 .B psk
-for shared secrets,
+for pre-shared secrets,
+.B pubkey
+(the default) for public key signatures as well as the synonyms
 .B rsasig
-for RSA digital signatures (the default),
-.B secret|rsasig
-for either, and
+for RSA digital signatures and
+.B ecdsasig
+for Elliptic Curve DSA signatures.
 .B never
-if negotiation is never to be attempted or accepted (useful for shunt-only conns).
+can be used if negotiation is never to be attempted or accepted (useful for
+shunt-only conns).
 Digital signatures are superior in every way to shared secrets. 
 IKEv1 additionally supports the values
 .B xauthpsk
-- 
cgit v1.2.3