[yadifa-announce] YADIFA release 2.1.2

Gery Van Emelen gery.vanemelen at eurid.eu
Fri Aug 14 17:11:43 CEST 2015


Introduction

YADIFA 2.1.2

Download:
The latest version of YADIFA can be found on the web site for YADIFA http://www.yadifa.eu/download <http://www.yadifa.eu/download>.
No update of YADIFA manual: YM210.pdf

New:
        The ./configure script has a new option: --enable-full-ascii7
        This changes the behaviour of DNS name validation to accept all the ASCII7 characters instead of only the DNS-space ones.
        Enabling this option is not recommended.
Fixes:
        - fixed an issue where the hmac-shaX identification string sent with a TSIG had the suffix ".sig-alg.reg.int".

Features:
	Supported platforms : Linux, FreeBSD, OpenBSD, OSX and Solaris
	Authoritative name server
	Load zone files
	Resource Record types:
	SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, MX	
	NAPTR, SRV, SSHFP, TLSA, WKS, DNSKEY, DS, RRSIG, NSEC, NSEC3, NSEC3PARAM
	Directives and special constructs:
	TTL, ORIGIN, *(wildcard) and @
	Zone transfer
	Master & Slave
	AXFR / IXFR	
	Notify
	TSIG
	dynamic update
	DNSSEC:
		- DSASHA1 (algorithm 3)
		- DSASHA1 NSEC3 (algorithm 6)
		- RSASHA1 (algorithm 5)
		- RSASHA1 NSEC3 (algorithm 7)
		- RSASHA256 NSEC3 (algorithm 8)
		- RSASHA512 NSEC3 (algorithm 10)
	Automatic resigning
	NSID
	DNS Response Rate Limiting
	yadifa client for accessing yadifad servers

Known issues:
building successfully with LTO may require to append both AR=gcc-ar and RANLIB=gcc-ranlib to the ./configure command
—enable-message does not work on OpenBSD 32-bit
removing the last key of a signed zone is permitted by YADIFA, but triggers some chicken-egg issue with signatures.


—
R & D team EURid

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.yadifa.eu/archives/yadifa-announce/attachments/20150814/b759a52b/attachment.html 


More information about the yadifa-announce mailing list