Simplify TinyCDB Autoconf probes

[kerberos/krb5-strength.git] / NEWS

diff --git a/NEWS b/NEWS
index b171725e721f4bb50dd058a1642150552793d4c1..e2916263cd1a01ea18eaef64299556350bc1830e 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -1,6 +1,6 @@
                     User-Visible krb5-strength Changes
 
-krb5-strength 2.0 (unreleased)
+krb5-strength 2.0 (2013-10-07)
 
     Add support for the MIT Kerberos password quality plugin interface,
     available in MIT Kerberos 1.9 and later, contributed by Greg Hudson
@@ -46,6 +46,12 @@ krb5-strength 2.0 (unreleased)
     This mode is mostly useful for testing, since such simple checking can
     more easily be done via less complex password strength configurations.
 
+    The check for passwords based on the principal now check for passwords
+    formed by reversing or adding numbers before and after each separate
+    component of the principal.  This will catch passwords based on the
+    realm or components of the realm, which will often catch passwords
+    based on the name of the local institution.
+
     The plugin now sets the Kerberos error message in the context to pass
     error information, resulting in higher-quality error reporting in the
     MIT Kerberos plugin.