1 files changed, 7 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog
index c1aa043f0..e0c41d52d 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,13 @@
 openssh (1:3.8.1p1-11) UNRELEASED; urgency=low
  * Move sshd_config(5) to openssh-server, where it belongs.
+  * If PasswordAuthentication is disabled, then offer to disable
+    ChallengeResponseAuthentication too. The current PAM code will attempt
+    password-style authentication if ChallengeResponseAuthentication is
+    enabled (closes: #250369).
+  * This will ask a question of anyone who installed fresh with 1:3.8p1-2 or
+    later and then upgraded. Sorry about that ... for this reason, the
+    default answer is to leave ChallengeResponseAuthentication enabled.
 -- Colin Watson <cjwatson@debian.org>  Tue, 31 Aug 2004 04:30:34 +0100

diff --git a/debian/changelog b/debian/changelog index c1aa043f0..e0c41d52d 100644 --- a/debian/changelog +++ b/debian/changelog
@@ -1,6 +1,13 @@
1	openssh (1:3.8.1p1-11) UNRELEASED; urgency=low	1	openssh (1:3.8.1p1-11) UNRELEASED; urgency=low
2		2
3	* Move sshd_config(5) to openssh-server, where it belongs.	3	* Move sshd_config(5) to openssh-server, where it belongs.
		4	* If PasswordAuthentication is disabled, then offer to disable
		5	ChallengeResponseAuthentication too. The current PAM code will attempt
		6	password-style authentication if ChallengeResponseAuthentication is
		7	enabled (closes: #250369).
		8	* This will ask a question of anyone who installed fresh with 1:3.8p1-2 or
		9	later and then upgraded. Sorry about that ... for this reason, the
		10	default answer is to leave ChallengeResponseAuthentication enabled.
4		11
5	-- Colin Watson <cjwatson@debian.org> Tue, 31 Aug 2004 04:30:34 +0100	12	-- Colin Watson <cjwatson@debian.org> Tue, 31 Aug 2004 04:30:34 +0100
6		13