diff options
Diffstat (limited to 'src/tls/tls_policy.h')
-rw-r--r-- | src/tls/tls_policy.h | 12 |
1 files changed, 7 insertions, 5 deletions
diff --git a/src/tls/tls_policy.h b/src/tls/tls_policy.h index 3a926949a..cd00331a5 100644 --- a/src/tls/tls_policy.h +++ b/src/tls/tls_policy.h @@ -85,12 +85,14 @@ class BOTAN_DLL Policy virtual DL_Group dh_group() const { return DL_Group("modp/ietf/1536"); } /** - * If this function returns false, unknown SRP identifiers will be rejected - * with an unknown_psk_identifier alert. Otherwise, a false identifier value - * will be used, causing the login to fail without revealing that the username - * does not exist on this system. + * If this function returns false, unknown SRP/PSK identifiers + * will be rejected with an unknown_psk_identifier alert as soon + * as the non-existence is identified. Otherwise, a false + * identifier value will be used and the protocol allowed to + * proceed, causing the login to eventually fail without + * revealing that the username does not exist on this system. */ - virtual bool hide_unknown_srp_users() const { return false; } + virtual bool hide_unknown_users() const { return false; } /** * @return the minimum version that we are willing to negotiate |