X-Git-Url: https://ruderich.org/simon/gitweb/?a=blobdiff_plain;f=NEWS;h=9735d131d410cd5c8433e58bc8a0901f16cf5726;hb=caf3e07bab2e42bd10fe7966542a37b41f336a0a;hp=30b8672d573f85de031f18e07f3e8a8b0c7399a5;hpb=219d904b7d12173ee93d016fe1a2cb8ae32eea9c;p=tlsproxy%2Ftlsproxy.git

diff --git a/NEWS b/NEWS
index 30b8672..9735d13 100644
--- a/NEWS
+++ b/NEWS
@@ -5,12 +5,16 @@ NEWS
 ---
 
 - Important: The file proxy-dh.pem is now required. tlsproxy-setup creates it,
-  but running it will overwrite the existing proxy-*.pem files. To create only
-  proxy-dh.pem use:
+  but running it will overwrite the existing proxy-*.pem files (which will
+  invalidate all certificate-*-proxy.pem files). To create only proxy-dh.pem
+  use:
 
     certtool --generate-dh-params --sec-param high --outfile proxy-dh.pem
 
+- Use "SECURE" as GnuTLS priority string which disallows insecure algorithms.
 - Add -a option, authentication for tlsproxy via basic digest authentication.
+- Add new debug level (-d 3) for even more debug output, including information
+  about the current TLS session.
 - Use pre-generated Diffie-Hellman parameters in proxy-dh.pem.
 - Code cleanup.
 - Better error handling.