Prepare for releasing Ourouparia on Thursday.

git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@806 185d5e19-27fe-0310-9dcf-9bff6b9f3609

HISTORY

@@ -1,12 +1,21 @@
 OpenPAM ??????????						2014-??-??
 
+ - FEATURE: Add a pam_oath module that implements RFC 4226 (HOTP) and
+   RFC 6238 (TOTP).
+============================================================================
+OpenPAM Ourouparia						2014-09-11
+
+ - ENHANCE: When executing a chain, require at least one service
+   function to succeed.  This mitigates fail-open scenarios caused by
+   misconfigurations or missing modules.
+
+ - ENHANCE: Make sure to overwrite buffers which may have contained an
+   authentication token when they're no longer needed.
+
  - BUGFIX: Under certain circumstances, specifying a non-existent
    module (or misspelling the name of a module) in a policy could
    result in a fail-open scenario.  (CVE-2014-3879)
 
- - FEATURE: Add a pam_oath module that implements RFC 4226 (HOTP) and
-   RFC 6238 (TOTP).
-
  - FEATURE: Add a search path for modules.  This was implemented in
    Nummularia but inadvertantly left out of the release notes.
 

RELNOTES

@@ -1,6 +1,6 @@
 
-		  Release notes for OpenPAM ????????
+                 Release notes for OpenPAM Ourouparia
-		  ==================================
+                 ====================================
 
 This release corresponds to the code used in FreeBSD HEAD as of the
 release date, and is also expected to work on almost any POSIX-like

include/security/openpam_version.h

@@ -39,7 +39,7 @@
 #define SECURITY_OPENPAM_VERSION_H_INCLUDED
 
 #define OPENPAM
-#define OPENPAM_VERSION	20130907
+#define OPENPAM_VERSION	20140911
-#define OPENPAM_RELEASE	"Nummularia"
+#define OPENPAM_RELEASE	"Ourouparia"
 
 #endif /* !SECURITY_OPENPAM_VERSION_H_INCLUDED */