arm: add why when to set 'require-server-cookie yes;'

c5453ea3 · Mark Andrews · Ondřej Surý · 1ea6aadf · c5453ea3
Commit c5453ea3 authored Oct 25, 2019 by Mark Andrews Committed by Ondřej Surý Oct 31, 2019
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 0 deletions

doc/arm/Bv9ARM-book.xml doc/arm/Bv9ARM-book.xml +6 -0

No files found.
--- a/doc/arm/Bv9ARM-book.xml
+++ b/doc/arm/Bv9ARM-book.xml
@@ -6011,6 +6011,12 @@ options {
 		  server cookie.
 		  The default is <userinput>no</userinput>.
 		</para>
+		<para>
+		  Set this to <userinput>yes</userinput> to test that DNS
+		  COOKIE clients correctly handle BADCOOKIE or if you are
+		  getting a lot of forged DNS requests with DNS COOKIES
+		  present.
+		</para>
 	      </listitem>
 	    </varlistentry>