Minor improvements in recent NSM documentation changes

* doc/emacs/misc.texi (Network Security): Improve wording and markup of last change. * src/gnutls.c (Fgnutls_peer_status): Doc fix. * etc/NEWS: Improve wording of last change.
author: Eli Zaretskii 2018-07-08 17:46:32 +0300
committer: Eli Zaretskii 2018-07-08 17:46:32 +0300
commit: 9c985a3d7a84bdfad17e11a12f671605bb31b3be (patch)
tree: bc5dc83a15b01b031538fba8668e625ff66f7183 /doc
parent: c6de1f1592745d98e58f06332ad35efc72160787 (diff)
download: emacs-9c985a3d7a84bdfad17e11a12f671605bb31b3be.tar.gz
emacs-9c985a3d7a84bdfad17e11a12f671605bb31b3be.zip
1 files changed, 12 insertions, 11 deletions
diff --git a/doc/emacs/misc.texi b/doc/emacs/misc.texi
index 96651381962..3d3441401dd 100644
--- a/doc/emacs/misc.texi
+++ b/doc/emacs/misc.texi
@@ -315,26 +315,27 @@ unverified connection, a temporary exception, or refuse the connection
 entirely.
 @vindex network-security-protocol-checks
-In addition to the basic certificate corrections checks,
+In addition to the basic certificate correctness checks, several
-several @acronym{TLS} algorithm checks are available.  Some encryption
+@acronym{TLS} algorithm checks are available.  Some encryption
 technologies that were previously thought to be secure have shown
-themselves to be fragile, and Emacs will (by default) warn the users
+themselves to be fragile, so Emacs (by default) warns you about some
-about some of these problems.
+of these problems.
 The protocol network checks is controlled via the
 @code{network-security-protocol-checks} variable.
-It's an alist where the first element is the name of the check,
+It's an alist where the first element of each association is the name
-the second is the security level where the check kicks in, and the
+of the check, the second element is the security level where the check
-optional third element is a parameter supplied to the check.
+should be used, and the optional third element is a parameter supplied
+to the check.
 An element like @code{(rc4 medium)} will result in the function
 @code{nsm-protocol-check--rc4} being called like thus:
-@code{(nsm-protocol-check--rc4 host port status optional-parameter)}.
+@w{@code{(nsm-protocol-check--rc4 host port status optional-parameter)}}.
 The function should return non-@code{nil} if the connection should
 proceed and @code{nil} otherwise.
-Below is a list of the checks done on the @code{medium} level.
+Below is a list of the checks done on the default @code{medium} level.
 @table @asis
@@ -374,8 +375,8 @@ connection to be encrypted.  If the connection isn't encrypted,
 @item Diffie-Hellman low prime bits
 When doing the public key exchange, the number of prime bits should be
-high to ensure that the channel can't be eavesdropped on by third
+high enough to ensure that the channel can't be eavesdropped on by third
-parties.  If this number is too low, you will be warned.  (This is the
+parties.  If this number is too low, Emacs will warn you.  (This is the
 @code{diffie-hellman-prime-bits} check in
 @code{network-security-protocol-checks}).
author	Eli Zaretskii	2018-07-08 17:46:32 +0300
committer	Eli Zaretskii	2018-07-08 17:46:32 +0300
commit	9c985a3d7a84bdfad17e11a12f671605bb31b3be (patch)
tree	bc5dc83a15b01b031538fba8668e625ff66f7183 /doc
parent	c6de1f1592745d98e58f06332ad35efc72160787 (diff)
download	emacs-9c985a3d7a84bdfad17e11a12f671605bb31b3be.tar.gz emacs-9c985a3d7a84bdfad17e11a12f671605bb31b3be.zip

diff --git a/doc/emacs/misc.texi b/doc/emacs/misc.texi index 96651381962..3d3441401dd 100644 --- a/doc/emacs/misc.texi +++ b/doc/emacs/misc.texi
@@ -315,26 +315,27 @@ unverified connection, a temporary exception, or refuse the connection
315	entirely.	315	entirely.
316		316
317	@vindex network-security-protocol-checks	317	@vindex network-security-protocol-checks
318	In addition to the basic certificate corrections checks,	318	In addition to the basic certificate correctness checks, several
319	several @acronym{TLS} algorithm checks are available. Some encryption	319	@acronym{TLS} algorithm checks are available. Some encryption
320	technologies that were previously thought to be secure have shown	320	technologies that were previously thought to be secure have shown
321	themselves to be fragile, and Emacs will (by default) warn the users	321	themselves to be fragile, so Emacs (by default) warns you about some
322	about some of these problems.	322	of these problems.
323		323
324	The protocol network checks is controlled via the	324	The protocol network checks is controlled via the
325	@code{network-security-protocol-checks} variable.	325	@code{network-security-protocol-checks} variable.
326		326
327	It's an alist where the first element is the name of the check,	327	It's an alist where the first element of each association is the name
328	the second is the security level where the check kicks in, and the	328	of the check, the second element is the security level where the check
329	optional third element is a parameter supplied to the check.	329	should be used, and the optional third element is a parameter supplied
		330	to the check.
330		331
331	An element like @code{(rc4 medium)} will result in the function	332	An element like @code{(rc4 medium)} will result in the function
332	@code{nsm-protocol-check--rc4} being called like thus:	333	@code{nsm-protocol-check--rc4} being called like thus:
333	@code{(nsm-protocol-check--rc4 host port status optional-parameter)}.	334	@w{@code{(nsm-protocol-check--rc4 host port status optional-parameter)}}.
334	The function should return non-@code{nil} if the connection should	335	The function should return non-@code{nil} if the connection should
335	proceed and @code{nil} otherwise.	336	proceed and @code{nil} otherwise.
336		337
337	Below is a list of the checks done on the @code{medium} level.	338	Below is a list of the checks done on the default @code{medium} level.
338		339
339	@table @asis	340	@table @asis
340		341
@@ -374,8 +375,8 @@ connection to be encrypted. If the connection isn't encrypted,
374		375
375	@item Diffie-Hellman low prime bits	376	@item Diffie-Hellman low prime bits
376	When doing the public key exchange, the number of prime bits should be	377	When doing the public key exchange, the number of prime bits should be
377	high to ensure that the channel can't be eavesdropped on by third	378	high enough to ensure that the channel can't be eavesdropped on by third
378	parties. If this number is too low, you will be warned. (This is the	379	parties. If this number is too low, Emacs will warn you. (This is the
379	@code{diffie-hellman-prime-bits} check in	380	@code{diffie-hellman-prime-bits} check in
380	@code{network-security-protocol-checks}).	381	@code{network-security-protocol-checks}).
381		382