summaryrefslogtreecommitdiffhomepage
diff options
context:
space:
mode:
authorJeff Forcier <jeff@bitprophet.org>2014-09-08 10:48:33 -0700
committerJeff Forcier <jeff@bitprophet.org>2014-09-08 10:48:33 -0700
commitb36b87ceefd50fa691eb5b46865d0c28a8c511dd (patch)
tree491342b857b2f0222c52ea8f35ddee92eba776dd
parent615c30759f62c1ccb5120223f12d1415d09a3566 (diff)
Changelog re #298
-rw-r--r--sites/www/changelog.rst9
1 files changed, 9 insertions, 0 deletions
diff --git a/sites/www/changelog.rst b/sites/www/changelog.rst
index 44bd61e9..2f23d0fc 100644
--- a/sites/www/changelog.rst
+++ b/sites/www/changelog.rst
@@ -2,6 +2,15 @@
Changelog
=========
+* :bug:`298 major` Don't perform point validation on ECDSA keys in
+ ``known_hosts`` files, since a) this can cause significant slowdown when such
+ keys exist, and b) ``known_hosts`` files are implicitly trustworthy. Thanks
+ to Kieran Spear for catch & patch.
+
+ .. note::
+ This change bumps up the version requirement for the ``ecdsa`` library to
+ ``0.11``.
+
* :bug:`234 major` Lower logging levels for a few overly-noisy log messages
about secure channels. Thanks to David Pursehouse for noticing & contributing
the fix.