From c0101ba5d78758d30503682935b5b7602269aa93 Mon Sep 17 00:00:00 2001
From: Joshua Judson Rosen
Date: Tue, 17 Feb 2015 00:43:54 -0500
Subject: Prepare for v0.8.5 release

Update version-strings and summarise the changes since v0.8.4 in ChangeLog.
---
 ChangeLog | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'ChangeLog')

diff --git a/ChangeLog b/ChangeLog
index 2cbe382..9d35eaf 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,15 @@
+17.02.2015 (v0.8.5):
+  - Fixed: security issues with SSL. We now use TLS rather than SSLv3,
+           and autonegotiate the strongest version of TLS we can get,
+           since all versions of pre-TLS SSL are widely deprecated
+           at this point (POODLE attack finally killed SSLv3).
+  - Removed: internal support for HTTP/HTTPS proxies:
+           there are better options readily available as external tools,
+           and removing the internal code makes it much easier to
+           reason about our own security and general correctness.
+  - Added: support for per-realm CA certificates
+  - Added: support for loading complete certificate-chains in afclient
+
 03.10.2007 (v0.8.4):
   - Added (by Joshua Judson Rosen): certificate-based authentication
 
-- 
cgit v1.1