Here is a provisional roadmap for the upcoming releases of YADIFA. Click on the links for a listing of the key features included in each release.
Release 1.0.0 (25 June 2012)
Supported operating systems
- MacOS X
- Linux
- FreeBSD
Functionality
- authoritative name server
- DNS UPDATE
- DNS NOTIFY
- AXFR
- IXFR
Resource Record types
- SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, NAPTR, SRV, SSHFP
- DNSKEY, DS, RRSIG , NSEC, NSEC3, NSEC3PARAM
Directives and special constructs
- TTL
- ORIGIN
- *(wildcard)
Mechanisms implemented for DNSSEC
- re-signing zonefile
Algorithms implemented
- RSA
| Value | Algorithm [Mnemonic] | Zone Signing | References | Status |
|---|---|---|---|---|
| 5 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 7 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
Release 1.1.0 (Q1 2013)
Supported operating systems
- MacOS X
- Linux
- FreeBSD
Functionality
- authoritative name server
- DNS UPDATE
- DNS NOTIFY
- AXFR
- IXFR
Resource Record types
- SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, NAPTR, SRV, SSHFP
- DNSKEY, DS, RRSIG , NSEC, NSEC3, NSEC3PARAM
Directives and special constructs
- TTL
- ORIGIN
- *(wildcard)
Mechanisms implemented for DNSSEC
- re-signing zone file
Algorithms implemented
- RSA
- DSA
| Value | Algorithm [Mnemonic] | Zone Signing | References | Status |
|---|---|---|---|---|
| 3 | DSA/SHA-1 [DSA] | y | [RFC2536] | OPTIONAL |
| 5 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 6 | DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] | y | [RFC5155] | OPTIONAL |
| 7 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 8 | RSA/SHA-256 [RSASHA256] | y | [RFC5702] | - |
| 10 | RSA/SHA-512 [RSASHA512] | y | [RFC5702] | - |
Extra
- Performance optimalisation
Release 1.2.0 (Q2 2013)
Supported operating systems
- MacOS X
- Linux
- *BSD
Functionality
- authoritative name server
- DNS UPDATE
- DNS NOTIFY
- AXFR
- IXFR
- full featered client (yadifa), which can be used to control the server
- dynamic provisioning
Mechanisms implemented for DNSSEC
- resigning zone file
- automated key roll over mechanism
Algorithms implemented
- RSA
- DSA
| Value | Algorithm [Mnemonic] | Zone Signing | References | Status |
|---|---|---|---|---|
| 3 | DSA/SHA-1 [DSA] | y | [RFC2536] | OPTIONAL |
| 5 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 6 | DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] | y | [RFC5155] | OPTIONAL |
| 7 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 8 | RSA/SHA-256 [RSASHA256] | y | [RFC5702] | - |
| 10 | RSA/SHA-512 [RSASHA512] | y | [RFC5702] | - |
Release 2.0.0 (Q4 2013)
Supported operating systems
- MacOS X
- Linux
- *BSD
- Windows Server
Functionality
- authoritative name server
- caching name server
- validating name server
- DNS UPDATE
- DNS NOTIFY
- AXFR
- IXFR
- full featered client (yadifa), which can be used for provisioning the server
Mechanisms implemented for DNSSEC
- re-signing zone file
- automated key roll over mechanism
Algorithms implemented
- RSA
- DSA
| Value | Algorithm [Mnemonic] | Zone Signing | References | Status |
|---|---|---|---|---|
| 3 | DSA/SHA-1 [DSA] | y | [RFC2536] | OPTIONAL |
| 4 | Elliptic Curve [ECC] | TBA | - | |
| 5 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 6 | DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] | y | [RFC5155] | OPTIONAL |
| 7 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 8 | RSA/SHA-256 [RSASHA256] | y | [RFC5702] | - |
| 10 | RSA/SHA-512 [RSASHA512] | y | [RFC5702] | - |
Extra
- dnslg library for resolving dns queries
- dnszone library related to zone manipulations
- PERL wrapper around the dnsresolv library
Release 3.0.0 (Q2 2014)
Supported operating systems
- MacOS X
- Linux
- *BSD
- Windows Server
Functionality
- authoritative name server
- caching name server
- validating name server
- DNS UPDATE
- DNS NOTIFY
- AXFR
- IXFR
- full featured client (yadifa), which can be used for provisioning the server
- generic back-end enabling access to SQL databases for zone file con figuration, provisioning and update
Mechanisms implemented for DNSSEC
- re-signing zone file
- automated key roll-over mechanism
Algorithms implemented
- RSA
- DSA
| Value | Algorithm [Mnemonic] | Zone Signing | References | Status |
|---|---|---|---|---|
| 3 | DSA/SHA-1 [DSA] | y | [RFC2536] | OPTIONAL |
| 4 | Elliptic Curve [ECC] | TBA | - | |
| 5 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 6 | DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] | y | [RFC5155] | OPTIONAL |
| 7 | RSA/SHA-1 [RSASHA1] | y | [RFC3110] | MANDATORY |
| 8 | RSA/SHA-256 [RSASHA256] | y | [RFC5702] | - |
| 10 | RSA/SHA-512 [RSASHA512] | y | [RFC5702] | - |
Extra
- dnslg library for resolving dns queries
- dnszone library related to zone manipulations
- dnszone library which can be used in other projects
- PERL wrapper around the dnsresolv library