Some comment and copyright updates

server/conf.php

@@ -1,6 +1,6 @@
 <?php
 /*
-  Copyright (C) 2013-2015 Grégory Soutadé
+  Copyright (C) 2013-2017 Grégory Soutadé
   
   This file is part of gPass.
   
@@ -48,25 +48,23 @@ $PBKDF2_LEVEL=1000;
   (to generate a unique PBKDF2 derivation) that result in an access tokens.
   With this access token, user has the right to get
   encrypted login/password values and remove them.
-  It's a kind of challenge.
+  It's a kind of challenge but requires more cpu bandwidth
+  (one derivation + two decryption for each password !).
 
   This option is backward compatible with old version < 0.6
-
-  For now it's deactivated because it requires high cpu bandwidth
-  (one derivation + two decryption for each password !). When
-  standard crypto API will be stable it will be enabled by default.
 */
 $USE_SHADOW_LOGINS=1;
 
 /*
   Protection against DDoS.
-  Each request can contains multiple password combination
+  Each request can contains multiple password combinations
   (to support wildcards for example) and multiple names.
   Currently only two passwords are sent from addon :
       www.example.com
       *.example.com
   But, on future we may also consider 'www.example.*', '*.example.*' and lower case username.
-  For maximum security, you can set it to 2.
+  For maximum security, you can set it to 2 or 4 if you want to be backward compatible
+  with addons/extions <= 0.7.
  */
 $MAX_PASSWORDS_PER_REQUEST=10;
 

server/functions.php

@@ -1,6 +1,6 @@
 <?php
 /*
-  Copyright (C) 2013 Grégory Soutadé
+  Copyright (C) 2013-2017 Grégory Soutadé
   
   This file is part of gPass.
   

server/index.php

@@ -1,6 +1,6 @@
 <?php
 /*
-  Copyright (C) 2013-2014 Grégory Soutadé
+  Copyright (C) 2013-2017 Grégory Soutadé
   
   This file is part of gPass.