Merge branch 'main' into session-mode-example

Author: marbens-arch

specs/bep-v1.rst

@@ -35,19 +35,14 @@ level protocols providing encryption and authentication.
     +-----------------------------+
     |   Block Exchange Protocol   |
     |-----------------------------|
-    | Encryption & Auth (TLS 1.2) |
+    | Encryption & Auth (TLS 1.3) |
     |-----------------------------|
     |      Reliable Transport     |
     |-----------------------------|
     v             ...             v
 
-The encryption and authentication layer SHALL use TLS 1.2 or a higher
-revision. A strong cipher suite SHALL be used, with "strong cipher
-suite" being defined as being without known weaknesses and providing
-Perfect Forward Secrecy (PFS). Examples of strong cipher suites are
-given at the end of this document. This is not to be taken as an
-exhaustive list of allowed cipher suites but represents best practices
-at the time of writing.
+The encryption and authentication layer SHALL use TLS 1.3 or a higher
+revision.
 
 The exact nature of the authentication is up to the application, however
 it SHALL be based on the TLS certificate presented at the start of the
@@ -889,20 +884,3 @@ retrieves the data from the folder and transmits Response records (9 through
 message (13). Both peers enter idle state after 13. At some later time 14,
 the ping timer on device B expires and a Ping message is sent. The same
 process occurs for device A at 15.
-
-Examples of Strong Cipher Suites
---------------------------------
-
-======  ===========================  ==================================
-ID      Name                         Description
-======  ===========================  ==================================
-0x009F  DHE-RSA-AES256-GCM-SHA384    TLSv1.2 DH RSA AESGCM(256) AEAD
-0x006B  DHE-RSA-AES256-SHA256        TLSv1.2 DH RSA AES(256) SHA256
-0xC030  ECDHE-RSA-AES256-GCM-SHA384  TLSv1.2 ECDH RSA AESGCM(256) AEAD
-0xC028  ECDHE-RSA-AES256-SHA384      TLSv1.2 ECDH RSA AES(256) SHA384
-0x009E  DHE-RSA-AES128-GCM-SHA256    TLSv1.2 DH RSA AESGCM(128) AEAD
-0x0067  DHE-RSA-AES128-SHA256        TLSv1.2 DH RSA AES(128) SHA256
-0xC02F  ECDHE-RSA-AES128-GCM-SHA256  TLSv1.2 ECDH RSA AESGCM(128) AEAD
-0xC027  ECDHE-RSA-AES128-SHA256      TLSv1.2 ECDH RSA AES(128) SHA256
-======  ===========================  ==================================
-

users/faq-parts/general.rst

@@ -36,6 +36,13 @@ The following may be synchronized or not, depending:
 -  Extended attributes (when enabled)
 -  POSIX or NFS ACLs (as part of extended attributes)
 
+.. note::
+
+    Note that what can be synced often depends on the operating system, file
+    system, and possibly other factors. For example, even though Syncthing may
+    try to synchronise symbolic links on Android, this will not succeed, as the
+    OS does not support them on the user storage.
+
 The following are *not* synchronized;
 
 -  Directory modification times (not preserved)

users/profiling.rst

@@ -45,7 +45,7 @@ Once done the profiling will result in a download called something like
 keep and send in, without modifying the file name as it tells us information
 necessary to interpret it.
 
-Repeat the process twice and keep both files.
+Perform the process twice and keep both files.
 
 Capture a heap profile
 ----------------------
@@ -65,4 +65,4 @@ The profiling will result in a download called something like
 keep and send in, without modifying the file name as it tells us information
 necessary to interpret it.
 
-Repeat the process twice and keep both files.
+Perform the process twice and keep both files.