From 03b5be5fd03c091735a81a9b480088b718d34f50 Mon Sep 17 00:00:00 2001
From: Koichiro IWAO <meta@vmeta.jp>
Date: Wed, 14 Dec 2016 14:55:15 +0900
Subject: [PATCH] docs: document maximum length of tls_ciphers

---
 docs/man/xrdp.ini.5.in | 4 ++--
 xrdp/xrdp.ini          | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/man/xrdp.ini.5.in b/docs/man/xrdp.ini.5.in
index 979c629b..d4607ea3 100644
--- a/docs/man/xrdp.ini.5.in
+++ b/docs/man/xrdp.ini.5.in
@@ -168,8 +168,8 @@ Specify send/recv buffer sizes in bytes.  The default value depends on operating
 
 .TP
 \fBtls_ciphers\fP=\fIcipher_suite\fP
-Specifies TLS cipher suite.  The format of this parameter is equivalent to which
-\fBopenssl\fP(1) ciphers subcommand accepts.
+Specifies TLS cipher suite in 63 characters or less.  The format of this parameter is
+equivalent to which \fBopenssl\fP(1) ciphers subcommand accepts.
 
 (ex. $ openssl ciphers 'HIGH:!ADH:!SHA1')
 
diff --git a/xrdp/xrdp.ini b/xrdp/xrdp.ini
index ce4df137..58b82bb5 100644
--- a/xrdp/xrdp.ini
+++ b/xrdp/xrdp.ini
@@ -28,7 +28,7 @@ key_file=
 ; set SSL protocols
 ; can be space separated list of 'SSLv3', 'TLSv1', 'TLSv1.1', 'TLSv1.2'
 ssl_protocols=TLSv1 TLSv1.1 TLSv1.2
-; set TLS cipher suites
+; set TLS cipher suites (up to 63 characters)
 #tls_ciphers=HIGH
 
 ; Section name to use for automatic login if the client sends username