-monkeysphere (0.31~pre) UNRELEASED; urgency=low
+monkeysphere (0.35) upstream;
+ * Remove reference to USE_VALIDATION_AGENT.
+ * Fix ssh_proxycommand for marginal hosts (closes MS #2593)
+ * GnuPG should always behave as --fixed-list-mode (closes MS #2587)
+
+ -- Jameson Rollins <jrollins@finestructure.net> Fri, 29 Oct 2010 20:21:54 -0400
+
+monkeysphere (0.34) upstream;
+
+ * fix keys-for-user so that it outputs proper authorized_keys lines
+ (close MS #2550)
+ * refactor key processing for key files, greatly reducing redundant code
+ paths
+ * update authorized_keys and known_hosts in temp filess that are
+ atomically moved into place
+ * don't fail if authorized_keys file not already present (Closes: 600644)
+ * document CHECK_KEYSERVER in monkeysphere-authentication man page
+ (close MS #2556)
+
+ -- Jameson Rollins <jrollins@finestructure.net> Tue, 26 Oct 2010 10:27:01 -0400
+
+monkeysphere (0.33) upstream;
+
+ [ Daniel Kahn Gillmor ]
+ * defaulting MONKEYSPHERE_HASH_KNOWN_HOSTS to false
+ (closes MS #2483)
+
+ [ Jameson Rollins ]
+ * fix security vulnerability is parsing userids in
+ monkeysphere-authentication keys-for-user (Closes: #600304)
+ * fix failure after first invalid key in monkeysphere-authentication
+ keys-for-user (closes MS #2545)
+ * ignore command options in monkeysphere-authentication keys-for-user
+
+ -- Jameson Rollins <jrollins@finestructure.net> Fri, 15 Oct 2010 18:05:18 -0400
+
+monkeysphere (0.32) upstream;
+
+ [ Jameson Rollins ]
+ * Fix specification of install paths in all scripts and man pages
+ (closes MS #2491)
+ * Fix need for single argument to gpg_sphere (thanks Clint)
+ (closes MS #442)
+ * specify LC_ALL=C for all gpg calls
+ (closes MS #2496)
+
+ [ Micah Anderson ]
+ * fix monkeysphere-host revoke-key, which never worked properly :(
+ * add some debug output to monkeysphere-host publish-key
+ (closes MS #2289)
+
+ [ Clint Adams ]
+ * add support for options to the authorized User IDs file. Options that
+ should apply to keys for a given User ID should be on
+ whitespace-prefixed lines immediately following that User ID.
+ (closes MS #440)
+
+ -- Jameson Rollins <jrollins@finestructure.net> Wed, 06 Oct 2010 17:41:09 -0400
+
+monkeysphere (0.31) upstream;
+
+ [ Daniel Kahn Gillmor ]
* support x509 anchors for monkeysphere-host, allow shared anchor
between m-h and m-a (closes MS #2288)
* do not bail or fail on m-h publish-key if the admin interactively
declines to publish one of the keys key (closes MS #1945)
* report updated expiration date upon successful conclusion of m-h
set-expire (closes MS #2291)
+ * added some files in examples/ to demonstrate system integration
+ with OpenSSH
- -- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Thu, 06 May 2010 11:23:38 -0400
+ [ Jameson Rollins ]
+ * add keys-for-user subcommand to monkeysphere-authentication
-monkeysphere (0.30) unstable; urgency=low
+ -- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Thu, 15 Jul 2010 19:20:35 -0400
+
+monkeysphere (0.30) upstream;
* changing tarball creation and packaging strategies
* make non-ssh parts of monkeysphere work well when openssh is not
-- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Sat, 17 Apr 2010 16:46:52 -0400
-monkeysphere (0.29) unstable; urgency=low
+monkeysphere (0.29) upstream;
* This is mainly a bugfix release
* Fix man page typo about monkeysphere authorized_keys location
-- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Sun, 14 Mar 2010 21:00:47 -0400
-monkeysphere (0.28) unstable; urgency=low
+monkeysphere (0.28) upstream;
* Major rework of monkeysphere-host to handle multiple host keys. We
also no longer assume ssh service keys. monkeysphere-host is now a
-- Jameson Rollins <jrollins@finestructure.net> Tue, 19 Jan 2010 13:50:31 -0500
-monkeysphere (0.27) unstable; urgency=low
+monkeysphere (0.27) upstream;
* fixed monkeysphere gen-subkey subcommand that was erroneously creating
DSA subkeys due to unannounced change in gpg edit-key UI. Now tests
-- Jameson Rollins <jrollins@finestructure.net> Mon, 11 Jan 2010 20:54:21 -0500
-monkeysphere (0.26) unstable; urgency=low
+monkeysphere (0.26) upstream;
* add 'refresh-keys' subcommand to monkeysphere-authentication
* improve marginal UI (closes MS #1141)
-- Jameson Graef Rollins <jrollins@finestructure.net> Sat, 01 Aug 2009 17:11:05 -0400
-monkeysphere (0.25) unstable; urgency=low
+monkeysphere (0.25) upstream;
* New upstream release:
* update/fix the marginal ui output
-- Jameson Graef Rollins <jrollins@finestructure.net> Thu, 16 Jul 2009 22:09:19 -0400
-monkeysphere (0.24) unstable; urgency=low
+monkeysphere (0.24) upstream;
* fixed how version information is stored/retrieved
* now uses perl-based keytrans for both pem2openpgp and openpgp2ssh
-- Jameson Graef Rollins <jrollins@finestructure.net> Tue, 03 Mar 2009 19:38:33 -0500
-monkeysphere (0.23) unstable; urgency=low
+monkeysphere (0.23) upstream;
"The Golden Bezoar Release"
-- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Sat, 21 Feb 2009 17:51:06 -0500
-monkeysphere (0.22) unstable; urgency=low
+monkeysphere (0.22) upstream;
[ Jameson Graef Rollins ]
* added info log output when a new key is added to known_hosts file.
-- Jameson Graef Rollins <jrollins@finestructure.net> Fri, 28 Nov 2008 14:23:31 -0500
-monkeysphere (0.21) unstable; urgency=low
+monkeysphere (0.21) upstream;
* move debian packaging to packaging subdirectory.
-- Jameson Graef Rollins <jrollins@finestructure.net> Sat, 15 Nov 2008 16:14:27 -0500
-monkeysphere (0.20) unstable; urgency=low
+monkeysphere (0.20) upstream;
[ Daniel Kahn Gillmor ]
* ensure that tempdirs are properly created, bail out otherwise instead
* This is experimental -- please report bugs!
-- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Thu, 19 Jun 2008 00:34:53 -0400
-