update release notes

2019-06-23 16:18:43 -07:00
parent 048975ccc7
commit 4dcd6f37c6
1 changed files with 6 additions and 3 deletions
--- a/documentation/RELEASE_NOTES.html
+++ b/documentation/RELEASE_NOTES.html
@@ -38,7 +38,7 @@ host, and the IOC would believe them.</p>
 look up the IP address of any hostnames listed in its ACF (which will normally
 be done using the DNS or the <tt>/etc/hosts</tt> file). The IOC will then
 compare the resulting IP address against the client's actual IP address when
-checking access permissions at connection time. This name resolution gets done
+checking access permissions at connection time. This name resolution is performed
 at ACF file load time, which has a few consequences:</p>

 <ol>
@@ -46,14 +46,17 @@ at ACF file load time, which has a few consequences:</p>
 <li>If the DNS is slow when the names are resolved this will delay the process
 of loading the ACF file.</li>

-<li>If a host name cannot be resolved the IOC will treat the ACF as invalid,
-which prevents any CA clients from connecting.</li>
+<li>If a host name cannot be resolved the IOC will proceed, but this host name
+will never be matched.</li>

 <li>Any changes in the hostname to IP address mapping will not be picked up by
 the IOC unless and until the ACF file gets reloaded.</li>

 </ol>

+<p>Optionally, IP addresses may be added instead of, or in addition to, host names
+in the ACF file.</p>
+
 <p>This feature can be enabled before <tt>iocInit</tt> with</p>

 <blockquote><pre>