From 1934c9ea00cb4cb35a2561273c8df8339c8023a1 Mon Sep 17 00:00:00 2001
From: Jay Sorg <jay.sorg@gmail.com>
Date: Sun, 20 Apr 2014 00:42:19 -0700
Subject: sesman: more options for session lookup from Fredy Paquet

---
 docs/man/sesman.ini.5 | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

(limited to 'docs/man')

diff --git a/docs/man/sesman.ini.5 b/docs/man/sesman.ini.5
index 84beafb4..a1ba3a50 100644
--- a/docs/man/sesman.ini.5
+++ b/docs/man/sesman.ini.5
@@ -116,6 +116,31 @@ Sets the time(in seconds) limit before a disconnected session is killed.
 If set to \fI0\fR, automatic killing is disabled.
 .br 
 
+.TP 
+\fBPolicy\fR=\fI[Default|UBD|UBI|UBC|UBDI|UBDC]\fR
+Session allocation policy. By Default, a new session is created
+for the combination <User,BitPerPixel> when using Xrdp, and 
+for the combination <User,BitPerPixel,DisplaySize> when using Xvnc.
+This behaviour can be changed by setting session policy to:
+.br
+
+.br 
+\fBUBD\fR - session per <User,BitPerPixel,DisplaySize>
+.br 
+\fBUBI\fR - session per <User,BitPerPixel,IPAddr>
+.br 
+\fBUBC\fR - session per <User,BitPerPixel,Connection>
+.br 
+\fBUBDI\fR - session per <User,BitPerPixel,DisplaySize,IPAddr>
+.br 
+\fBUBDC\fR - session per <User,BitPerPixel,DisplaySize,Connection>
+.br
+
+.br
+Note that the criteria <User,BitPerPixel> can not be turned off
+and <DisplaySize> will always be checkt when for Xvnc connections.
+.br
+
 .SH "SECURITY"
 The following parameters can be used in the \fB[Sessions]\fR section:
 
-- 
cgit v1.2.1


From 46c4a1fe4e26dae0709b82972432b06314bc0585 Mon Sep 17 00:00:00 2001
From: anthonyagresta <me@anthonyagresta.com>
Date: Mon, 4 Aug 2014 15:01:48 -0400
Subject: Add details for crypt_level=fips to man page

---
 docs/man/xrdp.ini.5 | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

(limited to 'docs/man')

diff --git a/docs/man/xrdp.ini.5 b/docs/man/xrdp.ini.5
index 7b32a9f0..131c0796 100644
--- a/docs/man/xrdp.ini.5
+++ b/docs/man/xrdp.ini.5
@@ -54,7 +54,7 @@ If set to \fB0\fR, \fBfalse\fR or \fBno\fR this option disables all channels \fB
 See section \fBCHANNELS\fP below for more fine grained options.
 
 .TP
-\fBcrypt_level\fP=\fIlow|medium|high\fP
+\fBcrypt_level\fP=\fIlow|medium|high|fips\fP
 .\" <http://blogs.msdn.com/b/openspecification/archive/2011/12/08/encryption-negotiation-in-rdp-connection.aspx>
 RDP connection are controlled by two encryption settings: \fIEncryption Level\fP and \fIEncryption Method\fP.
 The only supported \fIEncryption Method\fP is \fB40BIT_ENCRYPTION\fP, \fB128BIT_ENCRYPTION\fP and \fB56BIT_ENCRYPTION\fP are currently not supported.
@@ -70,6 +70,10 @@ All data sent between the client and the server is protected by encryption based
 .TP
 .B high
 All data sent between the client and server is protected by encryption based on the server's maximum key strength.
+.TP
+.B fips
+All data sent between the client and server is protected using Federal Information Processing Standard 140-1 validated encryption methods.
+.I This level is required for Windows clients (mstsc.exe) if the client's group policy enforces FIPS-compliance mode.
 .RE
 
 .TP
-- 
cgit v1.2.1