<html><head><meta http-equiv="Content-Type" content="text/html charset=windows-1252"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">All, <br><br>Version 1.3.14 of OpenDNSSEC has now been released. <br><br>Updates:<br><br>* OPENDNSSEC-367: ods-ksmutil: Require user confirmation if the algorithm for a key is changed in a policy (as this rollover is not handled cleanly)<br>* OPENDNSSEC-91: Make the keytype flag required when rolling keys<br>* OPENDNSSEC-403: Signer Engine: new command ‘ods-signer locks’ that shows locking information (for debugging purposes).<br><br>Bugfixes:<br><br>* OPENDNSSEC-247: Signer Engine: TTL on NSEC3 was not updated on SOA Minimum change.<br>* OPENDNSSEC-396: Use TTLs from kasp when generating DNSKEY and DS records for output.<br>* OPENDNSSEC-398: The ods-ksmutil key rollover command does not work correctly when rolling all keys using the –policy option<br>* SUPPORT-40: Signer Engine: Keep occluded data in signed zone files/transfers.<br><br>Documentation:<br><br>* <a href="http://wiki.opendnssec.org/display/DOCS13">http://wiki.opendnssec.org/display/DOCS13</a><br><br>Download:<br><br>* <a href="http://dist.opendnssec.org/source/opendnssec-1.3.14.tar.gz">http://dist.opendnssec.org/source/opendnssec-1.3.14.tar.gz</a><br>* <a href="http://dist.opendnssec.org/source/opendnssec-1.3.14.tar.gz.sig">http://dist.opendnssec.org/source/opendnssec-1.3.14.tar.gz.sig</a><br>* Checksum sha1: 9e6be8b42ab25cf1984f00326d44d0c195e00ef2<br>* Checksum sha256: 04016069f980191fac446ccab51f06bc7969d7544997c9e538ca1c170c2f42f5<br><br><br>//OpenDNSSEC team<br><br></body></html>