X-Git-Url: https://vcs.fsf.org/?a=blobdiff_plain;f=doc%2Fdoc-txt%2FChangeLog;h=4bc5235ecdbfe4ac1f215192bab4fc6dc4988b08;hb=f33875c3a0a0ef03a2e53cfcd339791b793151f0;hp=2078b352189c8dccabdd1a62b285cc5362a1074e;hpb=7d758a6a6842fac6c511039c29d76300e2e21ccd;p=exim.git

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index 2078b3521..4bc5235ec 100644
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -78,6 +78,14 @@ JH/12 Fix check on SMTP command input synchronisation.  Previously there were
       or prompt from Exim (running as a server), due to that code's lack of
       awareness of the SMTP input buferring.
 
+PP/04 Add commandline_checks_require_admin option.
+      Exim drops privileges sanely, various checks such as -be aren't a
+      security problem, as long as you trust local users with access to their
+      own account.  When invoked by services which pass untrusted data to
+      Exim, this might be an issue.  Set this option in main configuration
+      AND make fixes to the calling application, such as using `--` to stop
+      processing options.
+
 
 Exim version 4.89
 -----------------