diff --git a/CHANGELOG b/CHANGELOG
index 9132df287..7a4a36f24 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -36,6 +36,14 @@ o Improved AIX support for raw scans. This includes some patches
 o Fixed Nmap so that it again compiles and runs on Solaris 10,
   including IPv6 support. [David]
 
+o [NSE] Moved our brute force authentication cracking scripts
+  (*-brute) from the "auth" category into a new "brute"
+  category. Nmap's brute force capabilities have grown tremendously!
+  You can see all 32 of them at
+  http://nmap.org/nsedoc/categories/brute.html.  It isn't clear
+  whether dns-brute should be in the brute category, so for now it
+  isn't. [Fyodor]
+
 o Made the interface gathering loop work on Linux when an interface
   index is more than two digits in /proc/sys/if_inet6. Joe McEachern
   tracked down the problem and provided the fix.
@@ -306,14 +314,6 @@ o [NSE] Added more than 100 new signatures to http-enum (many for
   known vulnerabilities). They are in the categories: general,
   attacks, cms, security, management and database [Paulino]
 
-o [NSE] Moved our brute force authentication cracking scripts
-  (*-brute) from the "auth" category into a new "brute"
-  category. Nmap's brute force capabilities have grown tremendously!
-  You can see all 32 of them at
-  http://nmap.org/nsedoc/categories/brute.html.  It isn't clear
-  whether dns-brute should be in the brute category, so for now it
-  isn't. [Fyodor]
-
 o [NSE] Updated account status text in brute force password discovery 
   scripts in an effort to make the reporting more consistent across
   all scripts.  This will have an impact on any code that parses these