OpenDNSSEC

Version 2.2.0 of SoftHSM has been released. Updates: Issue #143: Delete a token using softhsm2-util. Issue #185: Change access mode bits for /var/lib/softhsm/tokens/ to 1777. All users can now create tokens, but only access their own. (Patch from Rick van Rein) Issue #186: Reinitializing a token will now keep the token, but all token objects […]

Version 1.3.8 of SoftHSM has been released. Bugfixes: SOFTHSM-101: softhsm-keyconv creates files with sensitive material in insecure way. Also applies to softhsm-util when using –export or –optimize. SOFTHSM-104: Inconsistencies between v1 and v2. ... [More] Issue #17: Use the MutexFactory wrapper functions correctly. Download: softhsm-1.3.8.tar.gz softhsm-1.3.8.tar.gz.sig Checksum SHA1: f57b48adef2c50b14cd8b600043fe6e8ef8d2413 Checksum SHA256: 2eaae3a01ec30241dacbc6c46abf1a78d7e54643e7793cf8a9be98fbe6b5953a [Less]

Version 1.4.12 of OpenDNSSEC has been released on 2016-10-17. News Hereby we announce the OpenDNSSEC 1.4.12 release. This is a bug fix release targeting a memory leak in the signer when being used in the “bump in the wire” model where the signer would send out notify messages and respond to IXFR requests for the […]

Version 2.0.3 of OpenDNSSEC has been released on 2016-10-17. News Hereby we announce the OpenDNSSEC 2.0.3 release. Most of the changes are related to further smoothing the migration path from OpenDNSSEC 1.4 to 2.0. If you still need to migrate from 1.4.10 please migrate to 2.0.3 directly rather than via 2.0.1. Another important fix is […]

Version 2.0.1 of OpenDNSSEC has been released on 2016-07-21. News This release is primarily focused on ironing out the issues on the migration path from 1.4 to 2.0. Besides that there are no functional changes. Fixes Fixed crash and linking issue in ods-migrate. Fixed case where 2.0.0 could not read backup files from 1.4.10. Fixed […]

It gives us pleasure to announce the release of OpenDNSSEC 2.0 OpenDNSSEC got a entire re-write of the enforcer. This part of OpenDNSSEC controls changing signing keys in the right way to perform a roll-over. Before, the enforcer would perform a roll-over according to a strict paradigm. One scenario in which deviations would not be […]

Version 1.4.10 of OpenDNSSEC has been released on May 2nd, 2016. News: This release fix targets stability issues which have had a history nad had been hard to reproduce.  Stability should be improved, running OpenDNSSEC as a long term service. Changes in TTL in the input zone that seem not to be propagated, notifies to […]

Version 2.1.0 of SoftHSM has been released. Updates: Issue #136: Improved guide and build scripts for Windows. (Thanks to Jaroslav Imrich) Issue #144: The password prompt in softhsm2-util can now be interrupted (ctrl-c). Issue #166: Add ... [More] slots.removable config option. (Patch from Sumit Bose) Issue #180: Windows configure script improvements. (Patch from Arnaud Grandville) Bug fixes: […] [Less]

Version 1.4.9 of OpenDNSSEC has now been released. News: The main motivations for this release are bug fixes related to use cases with large number of zones (more than 50 zones) in combination with an XFR based setup. Too much concurrent zone ... [More] transfers causes new transfers to be held back. These excess transfers however were not properly scheduled for […] [Less]

Changing signature algorithms in DNSSEC is a different process than normal key rollovers. OpenDNSSEC currently does not support performing rolls to another algorithm. The only safe way to do it would be to retract your DS record and go insecure for a short while. However, we now worked out a way to do an algorithm […]