1 krb5-strength (2.0-1) UNRELEASED; urgency=low
3 * New upstream release.
4 - Add native support for the MIT Kerberos password quality plugin
5 interface included in MIT Kerberos 1.9 and later.
6 - Stop building the Heimdal plugin. Heimdal prefers using an external
8 - Add support for TinyCDB dictionaries with a simpler dictionary
9 lookup algorithm. This allows use of this package to check
10 passwords against a large, fast dictionary with a minimum of
11 permutations as an alternative or supplement to the extensive
12 permutations tested by CrackLib.
13 - Minimum password length can now be enforced directly through
14 configuration of this module without relying on CrackLib.
15 - New boolean settings require_ascii_printable and require_non_letter
16 to reject passwords with non-ASCII or non-printable characters and
17 to require passwords contain at least one non-letter (and
19 - The plugin and external checking program will now run without a
20 dictionary configured so that they can be used only to check length
21 and the lighter character restrictions if so desired.
22 - When checking for passwords based on the principal, also check each
23 component of the principal to find passwords based on the realm.
25 -- Russ Allbery <rra@debian.org> Mon, 07 Oct 2013 16:30:08 -0700
27 krb5-strength (1.1-1) unstable; urgency=low
29 * New upstream release.
30 - Increase minimum password length to 8.
31 - Reject passwords formed from the username with digits appended.
32 - Reject duplicated dictionary words.
33 - Fix variable sizes on 64-bit platforms.
34 * Add a Bugs header directing bug reports to me personally.
35 * Update to debhelper compatibility level V8.
36 * Switch to Debian source package format 3.0 (quilt) with a custom local
38 * Update standards version to 3.9.3 (no changes required).
40 -- Russ Allbery <rra@debian.org> Fri, 11 May 2012 15:03:11 -0700
42 krb5-strength (1.0-1) unstable; urgency=low
44 * New upstream release.
45 - Add an external password strength program for Heimdal.
46 - Add a plugin for the Heimdal password strength support.
47 * Create a separate heimdal-strength package containing only the
48 external password check program for Heimdal. The Heimdal version of
49 the libkadm5srv plugin isn't packaged for the time being.
50 * Update debhelper compatibility mode to V7.
51 - Use debhelper rule minimization with overrides.
52 - Add ${misc:Depends} to dependencies.
53 * Add Homepage, Vcs-Git, and Vcs-Browser control fields.
55 * Update standards version to 3.8.4 (no changes required).
57 -- Russ Allbery <rra@debian.org> Tue, 16 Feb 2010 22:47:35 -0800
59 krb5-strength (0.5-1) unstable; urgency=low
61 * New upstream release.
62 - More checks for passwords based on the principal.
64 -- Russ Allbery <rra@debian.org> Wed, 18 Jul 2007 23:16:37 -0700
66 krb5-strength (0.3-1) unstable; urgency=low
68 * New upstream release with a different name.
69 - Many cleanups to the code and build system.
70 - Unnecessary differences from CrackLib removed.
71 - Some Debian CrackLib patches applied for robustness.
72 * Updated README.Debian with a better example kdc.conf entry.
73 * No longer install the packer binary. We can use the one from
76 -- Russ Allbery <rra@debian.org> Fri, 23 Mar 2007 15:27:50 -0700
78 krb5-passwd-strength (0.2-1) unstable; urgency=low
82 -- Russ Allbery <rra@debian.org> Thu, 22 Jun 2006 15:07:03 -0700