[yadifa-announce] YADIFA release 2.0.4

Thomas Dupas Thomas.Dupas at eurid.eu
Thu Dec 18 17:43:38 CET 2014


Introduction

 YADIFA 2.0.4

Download

 The latest version of YADIFA can be found on the web site for YADIFA http://www.yadifa.eu/download .

Support

 Additional information will be available soon in the form of a pdf document and the web site http://www.yadifa.eu

Features

 * Supported platforms : Linux, *BSD, OSX, Solaris

 * Authoritative name server

 * Load zone files

 * Resource Record types=20
         SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, MX
         NAPTR, SRV, SSHFP, TLSA, WKS, DNSKEY, DS, RRSIG, NSEC, NSEC3, NSEC3PARAM

 * Directives and special constructs
         TTL, ORIGIN, *(wildcard) and @

 * Zone transfer
       * Master & Slave
       * AXFR / IXFR
       * Notify
       * TSIG

 * dynamic update

 * DNSSEC
       * DSASHA1 (algorithm 3)
       * DSASHA1 NSEC3 (algorithm 6)
       * RSASHA1 (algorithm 5)
       * RSASHA1 NSEC3 (algorithm 7)
       * RSASHA256 NSEC3 (algorithm 8)
       * RSASHA512 NSEC3 (algorithm 10)
       * Automatic resigning

       * NSID

       * DNS Response Rate Limiting

       * “yadifa" client for accessing “yadifad" servers

Known issue:
 * removing the last key of a signed zone is permitted by YADIFA but triggers some chicken-egg issue with signatures.

Issue Fixes:
 * fixed an issue with the AXFR transfer where the serial number would not be properly taken into account
 * fixed an issue with the notify mechanism that could occur if the server was only listening to 127.0.0.1
 * fixed an issue with bogus DNSKEY records that may potentially lead to a crash in openssl
 * fixed a reported potential "tmpfile" vulnerability on DEBUG builds (generated with make debug)
 * fixed an issue with IPv6 connections on some architectures
 * typos fixes
 * minor fixes and improvements

--
R & D team EURid


More information about the yadifa-announce mailing list