Author: ajaquith
Date: Wed May 14 13:05:29 2008
New Revision: 656396
URL: http://svn.apache.org/viewvc?rev=656396&view=rev
Log:
Version/changelog bump.
Modified:
incubator/jspwiki/trunk/ChangeLog
Modified: incubator/jspwiki/trunk/ChangeLog
URL:
http://svn.apache.org/viewvc/incubator/jspwiki/trunk/ChangeLog?rev=656396&r1=656395&r2=656396&view=diff
==============================================================================
--- incubator/jspwiki/trunk/ChangeLog (original)
+++ incubator/jspwiki/trunk/ChangeLog Wed May 14 13:05:29 2008
@@ -1,3 +1,22 @@
+2008-05-14 Andrew Jaquith <ajaquith AT apache DOT org>
+
+ * 2.7.0-svn-24
+
+ * [JSPWIKI-20] Passwords are now salted and hashed per RFC 2307.
+ Every password is salted with a 8-byte random salt.
+
+ * The sort-of-secret "share container user accounts with
+ JDBCUserDatabase" option has been permanently removed, and
+ will not be replaced. This was previously added to make it easier
+ for users to add themselves to JDBC-based container realms.
+ However, the switch to salted passwords precludes the continued
+ use of this option. So it's gone and won't come back.
+
+ * Added a new class CryptoUtil that allows admins to generate
+ SSHA password hashes (and verify an existing password given
+ a supplied hash) at the command line. See the Javadoc
+ for com.ecyrd.jspwiki.util.CryptoUtil for details.
+
2008-05-11 Janne Jalkanen <[EMAIL PROTECTED]>
* 2.7.0-svn-23
