ed8e9b5eb3
Updates: * SUPPORT-72: Improve logging when failed to increment serial in case of key rollover and serial value "keep" [OPENDNSSEC-461]. * OPENDNSSEC-106: Add 'ods-enforcerd -p <policy>' option. This prompts the enforcer to run once and only process the specified policy and associated zones. * OPENDNSSEC-330: NSEC3PARAM TTL can now be optionally configured in kasp.xml. Default value remains PT0S. * OPENDNSSEC-390: ods-ksmutil: Add an option to the 'ods-ksmutil key ds-seen' command so the user can choose not to notify the enforcer. * OPENDNSSEC-430: ods-ksmutil: Improve 'zone add' - Zone add command could warn if a specified zone file or adapter file does not exits. * OPENDNSSEC-431: ods-ksmutil: Improve 'zone add' - Support default <input> and <output> values for DNS adapters. * OPENDNSSEC-454: ods-ksmutil: Add option for 'ods-ksmutil key import' to check if there is a matching key in the repository before import. Bugfixes: * OPENDNSSEC-435: Signer Engine: Fix a serious memory leak in signature cleanup. * OPENDNSSEC-463: Signer Engine: Duration PT0S is now printed correctly. * OPENDNSSEC-466: Signer Engine: Created bad TSIG signature when falling back to AXFR. * OPENDNSSEC-467: Signer Engine: After ods-signer clear, signer should not use inbound serial.
10 lines
479 B
Text
10 lines
479 B
Text
===========================================================================
|
|
$NetBSD: MESSAGE,v 1.6 2013/12/05 12:56:14 pettai Exp $
|
|
|
|
For latest information about configuring OpenDNSSEC, see:
|
|
https://wiki.opendnssec.org/display/DOCS/OpenDNSSEC+Documentation+Home
|
|
|
|
If you are upgrading OpenDNSSEC inbetween major releases (eg. 1.3 -> 1.4),
|
|
have a look at the included share/doc/opendnssec/MIGRATION file
|
|
|
|
===========================================================================
|