From 1e399dbf1c0d9f551cd3a7bcbb1ce778b8795c3e Mon Sep 17 00:00:00 2001
From: Jason McIntyre <jmc@cvs.openbsd.org>
Date: Fri, 23 Dec 2005 18:19:31 +0000
Subject: encryption key should be 160 bits, not 128;

from will h. backman;
ok hshoexer
---
 share/man/man8/vpn.8 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'share/man')

diff --git a/share/man/man8/vpn.8 b/share/man/man8/vpn.8
index e6491d2be45..16df5f4ec19 100644
--- a/share/man/man8/vpn.8
+++ b/share/man/man8/vpn.8
@@ -1,4 +1,4 @@
-.\" $OpenBSD: vpn.8,v 1.106 2005/08/19 15:38:39 jmc Exp $
+.\" $OpenBSD: vpn.8,v 1.107 2005/12/23 18:19:30 jmc Exp $
 .\"
 .\" Copyright 1998 Niels Provos <provos@physnet.uni-hamburg.de>
 .\" All rights reserved.
@@ -246,7 +246,7 @@ Note that when no authentication and encryption algorithms are defined,
 will automatically use HMAC-SHA2-256 for authentication and AES-128 in
 countermode for encryption.
 Therefore the authentication key needs to be 256 bits long; the encryption key
-128 bits.
+160 bits.
 For details see
 .Xr ipsec.conf 5 .
 .Ss Creating IPsec Flows [manual keying]
-- 
cgit v1.2.3