From 6575a2e4dbfe2dfcbcc2199e9528971d30def28e Mon Sep 17 00:00:00 2001
From: Fabian Keil <fk@fabiankeil.de>
Date: Sat, 16 Jan 2021 17:50:56 +0100
Subject: [PATCH] Explicitly mention that the CA key is used to sign
 certificates

---
 doc/source/p-config.sgml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/doc/source/p-config.sgml b/doc/source/p-config.sgml
index 7660dff4..b5c8500f 100644
--- a/doc/source/p-config.sgml
+++ b/doc/source/p-config.sgml
@@ -4081,6 +4081,9 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t</title>
     The <ulink url="#CA-CERT-FILE">ca-cert-file section</ulink> contains
     a command to generate it.
    </para>
+   <para>
+    The CA key is used by &my-app; to sign generated certificates.
+   </para>
    <para>
     Access to the key should be limited to Privoxy.
    </para>
-- 
2.49.0