From b8d806fd63b5a731ecee2f29d331085dfdf0d15f Mon Sep 17 00:00:00 2001
From: Fredrik Thulin <fredrik@yubico.com>
Date: Tue, 8 Nov 2011 22:05:53 +0100
Subject: [PATCH] Prepare for version 2.9.

---
 NEWS         | 8 ++++++++
 configure.ac | 2 +-
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/NEWS b/NEWS
index 20667a8..db00320 100644
--- a/NEWS
+++ b/NEWS
@@ -1,5 +1,13 @@
 pam_yubico NEWS -- History of user-visible changes.             -*- outline -*-
 
+* Version 2.9 (released 2011-11-08)
+
+** Security: Explicitly request ykclient to verify server signature.
+ykclient <= 2.5 strangely enough defaults to signing requests, but not
+verifying signatures in responses when it is supplied with a client key.
+
+Reported and patched by Dominic Rutherford <dominic@rutherfordfamily.co.uk>.
+
 * Version 2.8 (released 2011-08-26)
 
 ** Fix big security hole: Authentication succeeded when no password
diff --git a/configure.ac b/configure.ac
index 657e936..5d67e9a 100644
--- a/configure.ac
+++ b/configure.ac
@@ -26,7 +26,7 @@
 # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 # OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-AC_INIT([pam_yubico], [2.8], [simon@yubico.com])
+AC_INIT([pam_yubico], [2.9], [simon@yubico.com])
 AC_CONFIG_AUX_DIR([build-aux])
 AC_CONFIG_MACRO_DIR([m4])
 AM_INIT_AUTOMAKE([foreign])