diff --git a/debian/changelog b/debian/changelog
index 21a24c31..4bf9f6cc 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -19,6 +19,7 @@ shadow (1:4.2-1) UNRELEASED; urgency=low
       avoids anoying "...terminated" messages when PAM module send signal to
       su during session close. Closes: #670132
     - vipw/vigr is checking arguments provided after options. Closes: #677812
+    - Updated Japanese translation. Closes: #720004
   * Moved to git: replace Vcs-Git in place of Vcs-Svn and adapt
     Vcs-Browser.
   * Add pam_loginuid to login PAM settings. Closes: #677441
@@ -26,6 +27,7 @@ shadow (1:4.2-1) UNRELEASED; urgency=low
   * debian/rules, debian/control, debian/uidmap.install: create new uidmap
     package containing the new setuid-root binaries newuidmap and newgidmap 
     Set uidmap as priority optional.
+  * debian/login.su.pam: Enable pam_limits by default. Closes: #705301
 
  -- Christian Perrier <bubulle@debian.org>  Sat, 27 Jul 2013 20:07:18 +0200
 
diff --git a/debian/login.su.pam b/debian/login.su.pam
index c1a84aec..d5c6903a 100644
--- a/debian/login.su.pam
+++ b/debian/login.su.pam
@@ -47,10 +47,9 @@ session       required   pam_env.so readenv=1 envfile=/etc/default/locale
 # "nopen" stands to avoid reporting new mail when su'ing to another user
 session    optional   pam_mail.so nopen
 
-# Sets up user limits, please uncomment and read /etc/security/limits.conf
-# to enable this functionality.
+# Sets up user limits according to /etc/security/limits.conf
 # (Replaces the use of /etc/limits in old login)
-# session    required   pam_limits.so
+session    required   pam_limits.so
 
 # The standard Unix authentication modules, used with
 # NIS (man nsswitch) as well as normal /etc/passwd and