GNU Wget NEWS -- history of user-visible changes.
-Copyright (C) 1997-2005 Free Software Foundation, Inc.
+Copyright (C) 1997-2006 Free Software Foundation, Inc.
See the end for copying conditions.
Please send GNU Wget bug reports to <bug-wget@gnu.org>.
\f
* Changes in Wget 1.11.
+** configure.in now requires autoconf >= 2.61, rather than 2.59.
+
+** Authentication information is no longer sent as part of the Referer
+header in recursive fetches.
+
+** No authentication credentials are sent until a challenge is issued,
+for improved security. Authentication handling is still not
+RFC-compliant, as once a Basic challenge has been received, it will
+assume it can send credentials to any URL at that same host, and not
+just the ones at or below the original authenticated location.
+Credentials for Digest authentication are still never saved or issued
+automatically, and continue to require a challenge for each resource.
+
+** Added --max-redirect option, allowing the user to specify what should
+be the maximum number of HTTP redirects to follow.
+
+** Wget now saves HTTP downloads using file names specified by the
+`Content-Disposition' header. This is a standard way of specifying
+the file name used by many web dynamically generated pages.
+
** The GnuTLS library is now also supported for https downloads.
This is still work-in-progress. OpenSSL is still used by default; use
--with-ssl=gnutls to build with GnuTLS. OpenSSL is still required for