pkgsrc/security/opendnssec/MESSAGE
pettai ed8e9b5eb3 OpenDNSSEC 1.4.3:
Updates:
* SUPPORT-72: Improve logging when failed to increment serial in case of
  key rollover and serial value "keep" [OPENDNSSEC-461].
* OPENDNSSEC-106: Add 'ods-enforcerd -p <policy>' option. This prompts
  the enforcer to run once and only process the specified policy
  and associated zones.
* OPENDNSSEC-330: NSEC3PARAM TTL can now be optionally configured in kasp.xml.
  Default value remains PT0S.
* OPENDNSSEC-390: ods-ksmutil: Add an option to the 'ods-ksmutil key ds-seen'
  command so the user can choose not to notify the enforcer.
* OPENDNSSEC-430: ods-ksmutil: Improve 'zone add' - Zone add command could
  warn if a specified zone file or adapter file does not exits.
* OPENDNSSEC-431: ods-ksmutil: Improve 'zone add' - Support default <input>
  and <output> values for DNS adapters.
* OPENDNSSEC-454: ods-ksmutil: Add option for 'ods-ksmutil key import'
  to check if there is a matching key in the repository before import.

Bugfixes:
* OPENDNSSEC-435: Signer Engine: Fix a serious memory leak in signature cleanup.
* OPENDNSSEC-463: Signer Engine: Duration PT0S is now printed correctly.
* OPENDNSSEC-466: Signer Engine: Created bad TSIG signature when falling back
  to AXFR.
* OPENDNSSEC-467: Signer Engine: After ods-signer clear, signer should not use
  inbound serial.
2013-12-05 12:56:14 +00:00

10 lines
479 B
Text

===========================================================================
$NetBSD: MESSAGE,v 1.6 2013/12/05 12:56:14 pettai Exp $
For latest information about configuring OpenDNSSEC, see:
https://wiki.opendnssec.org/display/DOCS/OpenDNSSEC+Documentation+Home
If you are upgrading OpenDNSSEC inbetween major releases (eg. 1.3 -> 1.4),
have a look at the included share/doc/opendnssec/MIGRATION file
===========================================================================