On Thu, Jul 23, 2015 at 07:20:06AM +0000, Thanos Tsouanas wrote: > Index: relayd.conf.5 > ===================================================================
fixed, and a few more beside. jmc > RCS file: /cvs/src/usr.sbin/relayd/relayd.conf.5,v > retrieving revision 1.163 > diff -u -p -r1.163 relayd.conf.5 > --- relayd.conf.5 15 May 2015 20:40:26 -0000 1.163 > +++ relayd.conf.5 23 Jul 2015 07:20:06 -0000 > @@ -358,7 +358,7 @@ SMTP, NNTP, and FTP. > If the > .Ic tls > keyword is present, > -the transaction will occur in an TLS tunnel. > +the transaction will occur in a TLS tunnel. > .It Ic check tcp > Use a simple TCP connect to check that hosts are up. > .It Ic check tls > @@ -703,7 +703,7 @@ authenticated and encrypted relays. > TLS is the successor of the original Secure Sockets Layer (SSL) protocol, > but the term SSL is sometimes still used in modern TLS-based applications. > .Xr relayd 8 > -can operate as an TLS client or server to offer a variety of options > +can operate as a TLS client or server to offer a variety of options > for different use cases related to TLS. > .Bl -tag -width Ds > .It Ic TLS client > @@ -728,7 +728,7 @@ keyword in the relay > .Ic listen > statements, > .Xr relayd 8 > -will accept connections from clients as an TLS server. > +will accept connections from clients as a TLS server. > This mode is also known as > .Dq SSL/TLS acceleration . > See the > @@ -758,7 +758,7 @@ will listen for incoming connections whi > local socket by PF. > Before accepting and negotiating the incoming TLS connection as a > server, it will look up the original destination address on the > -diverted socket, and pre-connect to the target server as an TLS client > +diverted socket, and pre-connect to the target server as a TLS client > to obtain the remote TLS certificate. > It will update or patch the obtained TLS certificate by replacing the > included public key with its local server key because it doesn't have > @@ -791,7 +791,7 @@ replaces these IDs with random values to > predictable values generated by some hosts. > .It Ic http protocol > Handle the HyperText Transfer Protocol > -(HTTP, or "HTTPS" if encapsulated in an TLS tunnel). > +(HTTP, or "HTTPS" if encapsulated in a TLS tunnel). > .It Xo > .Op Ic tcp > .Ic protocol > @@ -1521,8 +1521,8 @@ To start, first generate a new local CA > -keyout /etc/ssl/private/ca.key -out /etc/ssl/ca.crt > .Ed > .Pp > -An TLS server key and self-signed cert for 127.0.0.1 are also required; > -see > +A TLS server key and a self-signed certificate for 127.0.0.1 are also > +required; see > .Ic listen on > in the > .Sx RELAYS >
