Roadmap

Here is a provisional roadmap for the upcoming releases of YADIFA. Click on the links for a listing of the key features included in each release.

Release 1.0.0 (25 June 2012)

Supported operating systems

  • MacOS X
  • Linux
  • FreeBSD

Functionality

  • authoritative name server
  • DNS UPDATE
  • DNS NOTIFY
  • AXFR
  • IXFR

Resource Record types

  • SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, NAPTR, SRV, SSHFP
  • DNSKEY, DS, RRSIG , NSEC, NSEC3, NSEC3PARAM

Directives and special constructs

  • TTL
  • ORIGIN
  • *(wildcard)

Mechanisms implemented for DNSSEC

  • re-signing zonefile

Algorithms implemented

  • RSA
Value Algorithm [Mnemonic] Zone Signing References Status
5 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
7 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
Release 1.1.0 (Q1 2013)

Supported operating systems

  • MacOS X
  • Linux
  • FreeBSD

Functionality

  • authoritative name server
  • DNS UPDATE
  • DNS NOTIFY
  • AXFR
  • IXFR

Resource Record types

  • SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, NAPTR, SRV, SSHFP
  • DNSKEY, DS, RRSIG , NSEC, NSEC3, NSEC3PARAM

Directives and special constructs

  • TTL
  • ORIGIN
  • *(wildcard)

Mechanisms implemented for DNSSEC

  • re-signing zone file

Algorithms implemented

  • RSA
  • DSA
Value Algorithm [Mnemonic] Zone Signing References Status
3 DSA/SHA-1 [DSA] y [RFC2536] OPTIONAL
5 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
6 DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] y [RFC5155] OPTIONAL
7 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
8 RSA/SHA-256 [RSASHA256] y [RFC5702] -
10 RSA/SHA-512 [RSASHA512] y [RFC5702] -

Extra

  • Performance optimalisation
Release 1.2.0 (Q2 2013)

Supported operating systems

  • MacOS X
  • Linux
  • *BSD

Functionality

  • authoritative name server
  • DNS UPDATE
  • DNS NOTIFY
  • AXFR
  • IXFR
  • full featered client (yadifa), which can be used to control the server
  • dynamic provisioning

Mechanisms implemented for DNSSEC

  • resigning zone file
  • automated key roll over mechanism

Algorithms implemented

  • RSA
  • DSA
Value Algorithm [Mnemonic] Zone Signing References Status
3 DSA/SHA-1 [DSA] y [RFC2536] OPTIONAL
5 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
6 DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] y [RFC5155] OPTIONAL
7 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
8 RSA/SHA-256 [RSASHA256] y [RFC5702] -
10 RSA/SHA-512 [RSASHA512] y [RFC5702] -
Release 2.0.0 (Q4 2013)

Supported operating systems

  • MacOS X
  • Linux
  • *BSD
  • Windows Server

Functionality

  • authoritative name server
  • caching name server
  • validating name server
  • DNS UPDATE
  • DNS NOTIFY
  • AXFR
  • IXFR
  • full featered client (yadifa), which can be used for provisioning the server

Mechanisms implemented for DNSSEC

  • re-signing zone file
  • automated key roll over mechanism

Algorithms implemented

  • RSA
  • DSA
Value Algorithm [Mnemonic] Zone Signing References Status
3 DSA/SHA-1 [DSA] y [RFC2536] OPTIONAL
4 Elliptic Curve [ECC] TBA -
5 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
6 DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] y [RFC5155] OPTIONAL
7 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
8 RSA/SHA-256 [RSASHA256] y [RFC5702] -
10 RSA/SHA-512 [RSASHA512] y [RFC5702] -

Extra

  • dnslg library for resolving dns queries
  • dnszone library related to zone manipulations
  • PERL wrapper around the dnsresolv library
Release 3.0.0 (Q2 2014)

Supported operating systems

  • MacOS X
  • Linux
  • *BSD
  • Windows Server

Functionality

  • authoritative name server
  • caching name server
  • validating name server
  • DNS UPDATE
  • DNS NOTIFY
  • AXFR
  • IXFR
  • full featured client (yadifa), which can be used for provisioning the server
  • generic back-end enabling access to SQL databases for zone file con figuration, provisioning and update

Mechanisms implemented for DNSSEC

  • re-signing zone file
  • automated key roll-over mechanism

Algorithms implemented

  • RSA
  • DSA
Value Algorithm [Mnemonic] Zone Signing References Status
3 DSA/SHA-1 [DSA] y [RFC2536] OPTIONAL
4 Elliptic Curve [ECC] TBA -
5 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
6 DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1] y [RFC5155] OPTIONAL
7 RSA/SHA-1 [RSASHA1] y [RFC3110] MANDATORY
8 RSA/SHA-256 [RSASHA256] y [RFC5702] -
10 RSA/SHA-512 [RSASHA512] y [RFC5702] -

Extra

  • dnslg library for resolving dns queries
  • dnszone library related to zone manipulations
  • dnszone library which can be used in other projects
  • PERL wrapper around the dnsresolv library


Download YADIFA