diff options
author | Jeff Forcier <jeff@bitprophet.org> | 2014-09-08 10:48:33 -0700 |
---|---|---|
committer | Jeff Forcier <jeff@bitprophet.org> | 2014-09-08 10:48:33 -0700 |
commit | b36b87ceefd50fa691eb5b46865d0c28a8c511dd (patch) | |
tree | 491342b857b2f0222c52ea8f35ddee92eba776dd | |
parent | 615c30759f62c1ccb5120223f12d1415d09a3566 (diff) |
Changelog re #298
-rw-r--r-- | sites/www/changelog.rst | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/sites/www/changelog.rst b/sites/www/changelog.rst index 44bd61e9..2f23d0fc 100644 --- a/sites/www/changelog.rst +++ b/sites/www/changelog.rst @@ -2,6 +2,15 @@ Changelog ========= +* :bug:`298 major` Don't perform point validation on ECDSA keys in + ``known_hosts`` files, since a) this can cause significant slowdown when such + keys exist, and b) ``known_hosts`` files are implicitly trustworthy. Thanks + to Kieran Spear for catch & patch. + + .. note:: + This change bumps up the version requirement for the ``ecdsa`` library to + ``0.11``. + * :bug:`234 major` Lower logging levels for a few overly-noisy log messages about secure channels. Thanks to David Pursehouse for noticing & contributing the fix. |