[yadifa-announce] YADIFA release 2.1.2
Gery Van Emelen
gery.vanemelen at eurid.eu
Fri Aug 14 17:11:43 CEST 2015
The latest version of YADIFA can be found on the web site for YADIFA http://www.yadifa.eu/download <http://www.yadifa.eu/download>.
No update of YADIFA manual: YM210.pdf
The ./configure script has a new option: --enable-full-ascii7
This changes the behaviour of DNS name validation to accept all the ASCII7 characters instead of only the DNS-space ones.
Enabling this option is not recommended.
- fixed an issue where the hmac-shaX identification string sent with a TSIG had the suffix ".sig-alg.reg.int".
Supported platforms : Linux, FreeBSD, OpenBSD, OSX and Solaris
Authoritative name server
Load zone files
Resource Record types:
SOA, A, AAAA, NS, CNAME, PTR, HINFO, TXT, MX
NAPTR, SRV, SSHFP, TLSA, WKS, DNSKEY, DS, RRSIG, NSEC, NSEC3, NSEC3PARAM
Directives and special constructs:
TTL, ORIGIN, *(wildcard) and @
Master & Slave
AXFR / IXFR
- DSASHA1 (algorithm 3)
- DSASHA1 NSEC3 (algorithm 6)
- RSASHA1 (algorithm 5)
- RSASHA1 NSEC3 (algorithm 7)
- RSASHA256 NSEC3 (algorithm 8)
- RSASHA512 NSEC3 (algorithm 10)
DNS Response Rate Limiting
yadifa client for accessing yadifad servers
building successfully with LTO may require to append both AR=gcc-ar and RANLIB=gcc-ranlib to the ./configure command
—enable-message does not work on OpenBSD 32-bit
removing the last key of a signed zone is permitted by YADIFA, but triggers some chicken-egg issue with signatures.
R & D team EURid
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the yadifa-announce