OpenDNSSEC

Version 1.4.0b1 of OpenDNSSEC has now been released. This version is recommended for testing only, not for use in production environments. Updates: OPENDNSSEC-130: libhsm: The PIN is now optional in conf.xml. The PIN can be entered using “ods-hsmutil ... [More] login” and is stored in shared memory. The daemons will not start until this has been donr by the user. OPENDNSSEC-297: [...] [Less]

Version 1.3.10 of OpenDNSSEC has now been released: Bugfixes: SUPPORT-30: RRSIGs are left in the signed zone when authoritative RRsets become glue [OPENDNSSEC-282]. OPENDNSSEC-261: Ldns fails to parse RR that seems syntactically correct. Was due to ... [More] memory allocation issues. Provided better log message. OPENDNSSEC-285: Signer segfault for 6 or more -v options OPENDNSSEC-298: Only unlink existing pidfile [...] [Less]

Version 1.4.0a3 of OpenDNSSEC has now been released. This version is recommended for testing only, not for use in production environments. Updates: OPENDNSSEC-258: Optionally include cka_id in output to DelegationSignerSubmitCommand. Bugfixes: ... [More] SUPPORT-27: ods-ksmutil: simplify zone delete so that it only marks keys as dead (rather than actually removing them). Leave the key removal to purge jobs. SUPPORT-29: [...] [Less]

We have now released a third alpha snapshot of the upcoming version of Enforcer. This version should only be used for testing, but we welcome feedback on it. Enforcer NG Key Features: Support for a large number of zones (of the order of  50,000 concurrent zones). Support for multiple rollover types. Alpha 3 snapshot: Enforcer: [...]

Version 1.3.9 of OpenDNSSEC has now been released: OPENDNSSEC-277: Enforcer: Performance optimisation of database access. Bugfixes: SUPPORT-27: ods-ksmutil: simplify zone delete so that it only marks keys as dead (rather than actually removing them). Leave the key removal to purge jobs. Download the tarball from: opendnssec-1.3.9.tar.gz  

June 8, 2012 – The Canadian Internet Registration Authority (CIRA) and the Swedish company OpenDNSSEC AB (svb) are pleased to announce they are partnering on an initiative to make the Internet more safe and secure. CIRA will provide support for the ... [More] continued development and enhancement of OpenDNSSEC, a free administration tool that uses open source [...] [Less]

Version 1.4.0a2 of OpenDNSSEC has now been released. OPENDNSSEC-226: Change in conf.xml: Configure the DNS listener IP address with /Listener/Interface/Address instead of /Listener/Interface/IPv{4,6}. OPENDNSSEC-249: ods-ksmutil: If key export finds ... [More] nothing to do then say so rather than display nothing which might be misinterpreted. OPENDNSSEC-262: Signer Engine: Make DNS Adapter ACL optional. OPENDNSSEC-263: Signer Engine: Added [...] [Less]

Version 1.3.8 of OpenDNSSEC has now been released. OPENDNSSEC-228: Signer Engine: Make ‘ods-signer update’ reload signconfs even if zonelist has not changed. OPENDNSSEC-231: Signer Engine: Allow for Classless IN-ADDR.ARPA names (RFC 2317). ... [More] OPENDNSSEC-234: Enforcer: Add indexes for foreign keys in kasp DB. (sqlite only, MySQL already has them.) OPENDNSSEC-246: Signer Engine: Warn if is in [...] [Less]

Version 1.3.3 of SoftHSM has now been released. Increased performance by adding more indexes to the database. Describe the usage of SO and user PIN in the README. Bugfixes: Detect if a C++ compiler is missing. Download the tarball from: softhsm-1.3.3.tar.gz

The Swedish company OpenDNSSEC AB (svb), which is operated by .SE (The Internet Infrastructure Foundation), will receive a capital injection of £35,000 from Nominet, which is in charge of the British UK top-level domain .uk. This will provide ... [More] additional stability to the operation, which develops the OpenDNSSEC software, as well as support and training when [...] [Less]