From 400af27afafce6116fa0a7465a095a3e335dac27 Mon Sep 17 00:00:00 2001
From: Kurt Zeilenga <kurt@openldap.org>
Date: Wed, 30 Jan 2002 00:41:36 +0000
Subject: [PATCH] Add clarification to password-hash directive

---
 doc/man/man5/slapd.conf.5 | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/doc/man/man5/slapd.conf.5 b/doc/man/man5/slapd.conf.5
index 0708a71918..d4e06d4ac7 100644
--- a/doc/man/man5/slapd.conf.5
+++ b/doc/man/man5/slapd.conf.5
@@ -349,7 +349,10 @@ name can also be used with a suffix of the form ":xx" in which case the
 value "oid.xx" will be used.
 .TP
 .B password-hash <hash>
-The <hash> to use for userPassword generation.  One of
+This option sets the hash to be used in generation of user
+passwords, stored in userPassword, during processing of
+LDAP Password Modify Extended Operations (RFC 3052).
+The <hash> must be one of
 .BR {SSHA} ,
 .BR {SHA} ,
 .BR {SMD5} ,
@@ -358,11 +361,17 @@ and
 .BR {CRYPT} .
 The default is
 .BR {SSHA} .
+
+Note that this option does not alter the normal user applications
+handling of userPassword during LDAP Add, Modify, or other LDAP operations.
 .TP
-.B password-crypt-salt-format <format>
+.B password\-crypt\-salt\-format <format>
 Specify the format of the salt passed to
 .BR crypt (3)
-when generating {CRYPT} passwords.  
+when generating {CRYPT} passwords (see
+.BR password\-hash )
+during processing of LDAP Password Modify Extended Operations (RFC 3062).
+
 This string needs to be in
 .BR sprintf (3)
 format and may include one (and only one) %s conversion.
-- 
2.39.5