From 486f6409deba9216f2a1174f4ccd9ce9c36965e0 Mon Sep 17 00:00:00 2001
From: Michael Lazar <lazar.michael22@gmail.com>
Date: Sat, 24 Aug 2019 14:38:57 -0400
Subject: [PATCH] Update README.md

---
 README.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/README.md b/README.md
index 4b9ceda..8f63e4e 100644
--- a/README.md
+++ b/README.md
@@ -78,6 +78,15 @@ $ openssl req -newkey rsa:2048 -nodes -keyout {hostname}.key \
     -nodes -x509 -out {hostname}.crt -subj "/CN={hostname}"
 ```
 
+#### TLS Client Certificates
+
+There are currently no plans to support transient self-signed client certificates.
+This is due to a techinical limitation of the python standand library's ``ssl``
+module, which is described in detail 
+[here](https://portal.mozz.us/?url=gemini%3A%2F%2Fmozz.us%2Fjournal%2F2019-08-21.txt).
+
+Support for verified TLS client certificates will be added in a future version.
+
 ### Hostname
 
 Because the gemini protocol sends the *whole* URL in the request, it's required