From ce50c6830b99f490c8f27bccfe36b07d5dfa70cc Mon Sep 17 00:00:00 2001
From: Florian Weimer <fw@deneb.enyo.de>
Date: Sun, 18 May 2008 17:59:03 +0200
Subject: [PATCH] Update comment reflecting new blacklists

---
 dowkd.in | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/dowkd.in b/dowkd.in
index 76d38d6..eec6518 100644
--- a/dowkd.in
+++ b/dowkd.in
@@ -46,12 +46,16 @@ OPTIONS is one pf:
 
 dowkd currently handles the following OpenSSH host and user keys,
 provided they have been generated on a little-endian architecture
-(such as i386 or amd64): RSA/1024, RSA/2048 and DSA/1024.  (The
-OpenSSH version in Debian does not support DSA key generation with)
-other sizes.
+(such as i386 or amd64): RSA/1024 (both rsa1 and rsa format), RSA/2048
+and DSA/1024.  (The relevant OpenSSH versions in Debian do not support
+DSA key generation with other sizes.)
 
 OpenVPN shared also detected on little-endian architecture.
 
+Unencrypted RSA private keys and PEM certificate files generated by
+OpenSSL are detected, provided they use key lengths of 1024 or 2048
+bits.
+
 Note that the blacklist by dowkd may be incomplete; it is only
 intended as a quick check.
 
-- 
2.11.4.GIT