From sara at sinodun.com  Fri Jul 11 14:36:37 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Fri, 11 Jul 2014 15:36:37 +0100
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.3.18rc1 release candidate
Message-ID: <26F54F70-3CE6-4339-AC85-2299EF5406C7@sinodun.com>

All, 

Version 1.3.18rc1 of OpenDNSSEC is now available. This is a release candidate for testing purposes:


OpenDNSSEC 1.3.18rc1 
???????????

Updates:
* OPENDNSSEC-620: conf.xml: New options: <PidFile> for both enforcer and signer, and <SocketFile> for the signer.
* Build: Fixed various OpenBSD compatibility issues found by Patrik Lundin <patrik.lundin.swe () gmail.com>.
* New tool: ods-getconf: to retrieve a configuration value from conf.xml given an expression.

Bugfixes:
* OPENDNSSEC-632: ods-ksmutil: 'zone add' command when zonelist.xml.backup can't be written zone is still added to database, solved it by checking the zonelist.xml.backup is writable before adding zones, and add error message when add zone failed.
* OPENDNSSEC-624: memory leak when signer failed, solved it by add ldns_rr_free(signature) in libhsm.c
* simple-dnskey-mailer.sh: Fix syntax error. (by Patrik Lundin https://github.com/eest)
* libhsm: Fixed a few other memory leaks.

Download:
* https://dist.opendnssec.org/source/testing/opendnssec-1.3.18rc1.tar.gz
* https://dist.opendnssec.org/source/testing/opendnssec-1.3.18rc1.tar.gz.sig
* Checksum SHA1: 9f7245b10af42ad973258dda9e0cdae4db418fcb
* Checksum SHA256: f77d155da80cbc6b6f1b05631a10d80ca43703e8151e580922ca505acbacbe4a


A full OpenDNSSEC 1.3.18 release is planned for Friday 18th July


//OpenDNSSEC team




From sara at sinodun.com  Fri Jul 11 14:36:40 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Fri, 11 Jul 2014 15:36:40 +0100
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.6rc1 release candidate
Message-ID: <8B903913-3025-479F-AF01-BC7259F3348B@sinodun.com>

All, 

Version 1.4.6rc1 of OpenDNSSEC is now available. This is a release candidate for testing purposes:


OpenDNSSEC 1.4.6rc1
???????????????

Updates:
* Signer Engine: Print secondary server address when logging notify reply errors.
* Build: Fixed various OpenBSD compatibility issues found by Patrik Lundin <patrik.lundin.swe () gmail.com>.
* OPENDNSSEC-621: conf.xml: New options: <PidFile> for both enforcer and signer, and <SocketFile> for the signer.
* New tool: ods-getconf: to retrieve a configuration value from conf.xml given an expression.

Bugfixes:
* OPENDNSSEC-469: ods-ksmutil: 'zone add' command when zonelist.xml.backup can't be written zone is still added to database, solved it by checking the zonelist.xml.backup is writable before adding zones, and add error message when add zone failed.
* OPENDNSSEC-617: Signer Engine: Fix DNS Input Adapter to not reject zone the first time due to RFC 1982 serial arethmetic.
* OPENDNSSEC-619: memory leak when signer failed, solved it by add ldns_rr_free(signature) in libhsm.c
* OPENDNSSEC-627: Signer Engine: Unable to update serial after restart when the backup files has been removed.
* OPENDNSSEC-628: Signer Engine: Ingored notifies log level is changed from debug to info.
* OPENDNSSEC-630: Signer Engine: Fix inbound zone transfer for root zone.
* libhsm: Fixed a few other memory leaks.
* simple-dnskey-mailer.sh: Fix syntax error. (by Patrik Lundin https://github.com/eest)

Download:
* https://dist.opendnssec.org/source/testing/opendnssec-1.4.6rc1.tar.gz
* https://dist.opendnssec.org/source/testing/opendnssec-1.4.6rc1.tar.gz.sig
* Checksum SHA1: 987552c44af449a0c7bebfe602a60b5f30fa67b9
* Checksum SHA256: 2037623150d35a0881f91ec1953050d44afc502229e7a0139d4513616d269ca7


A full OpenDNSSEC 1.4.6 release is planned for Friday 18th July.


//OpenDNSSEC team

From ondrej at sury.org  Mon Jul 14 11:53:29 2014
From: ondrej at sury.org (=?UTF-8?Q?Ond=C5=99ej=20Sur=C3=BD?=)
Date: Mon, 14 Jul 2014 13:53:29 +0200
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.6rc1 release candidate
In-Reply-To: <8B903913-3025-479F-AF01-BC7259F3348B@sinodun.com>
References: <8B903913-3025-479F-AF01-BC7259F3348B@sinodun.com>
Message-ID: <1405338809.21430.141382409.019C3171@webmail.messagingengine.com>

Hey Sara et al,

could you please add StartCom intermediate cert to the
dist.opendnssec.org
so wget doesn't fail when downloading? It's quite annoying...

Cheers,
Ondrej

On Fri, Jul 11, 2014, at 16:36, Sara Dickinson wrote:
> All, 
> 
> Version 1.4.6rc1 of OpenDNSSEC is now available. This is a release
> candidate for testing purposes:
> 
> 
> OpenDNSSEC 1.4.6rc1
> ???????????????
> 
> Updates:
> * Signer Engine: Print secondary server address when logging notify reply
> errors.
> * Build: Fixed various OpenBSD compatibility issues found by Patrik
> Lundin <patrik.lundin.swe () gmail.com>.
> * OPENDNSSEC-621: conf.xml: New options: <PidFile> for both enforcer and
> signer, and <SocketFile> for the signer.
> * New tool: ods-getconf: to retrieve a configuration value from conf.xml
> given an expression.
> 
> Bugfixes:
> * OPENDNSSEC-469: ods-ksmutil: 'zone add' command when
> zonelist.xml.backup can't be written zone is still added to database,
> solved it by checking the zonelist.xml.backup is writable before adding
> zones, and add error message when add zone failed.
> * OPENDNSSEC-617: Signer Engine: Fix DNS Input Adapter to not reject zone
> the first time due to RFC 1982 serial arethmetic.
> * OPENDNSSEC-619: memory leak when signer failed, solved it by add
> ldns_rr_free(signature) in libhsm.c
> * OPENDNSSEC-627: Signer Engine: Unable to update serial after restart
> when the backup files has been removed.
> * OPENDNSSEC-628: Signer Engine: Ingored notifies log level is changed
> from debug to info.
> * OPENDNSSEC-630: Signer Engine: Fix inbound zone transfer for root zone.
> * libhsm: Fixed a few other memory leaks.
> * simple-dnskey-mailer.sh: Fix syntax error. (by Patrik Lundin
> https://github.com/eest)
> 
> Download:
> * https://dist.opendnssec.org/source/testing/opendnssec-1.4.6rc1.tar.gz
> *
> https://dist.opendnssec.org/source/testing/opendnssec-1.4.6rc1.tar.gz.sig
> * Checksum SHA1: 987552c44af449a0c7bebfe602a60b5f30fa67b9
> * Checksum SHA256:
> 2037623150d35a0881f91ec1953050d44afc502229e7a0139d4513616d269ca7
> 
> 
> A full OpenDNSSEC 1.4.6 release is planned for Friday 18th July.
> 
> 
> //OpenDNSSEC team_______________________________________________
> Opendnssec-maintainers mailing list
> Opendnssec-maintainers at lists.opendnssec.org
> https://lists.opendnssec.org/mailman/listinfo/opendnssec-maintainers


-- 
Ond?ej Sur? <ondrej at sury.org>
Knot DNS (https://www.knot-dns.cz/) ? a high-performance DNS server


From jerry at opendnssec.org  Mon Jul 14 12:02:31 2014
From: jerry at opendnssec.org (Jerry =?ISO-8859-1?Q?Lundstr=F6m?=)
Date: Mon, 14 Jul 2014 14:02:31 +0200
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.6rc1 release candidate
In-Reply-To: <1405338809.21430.141382409.019C3171@webmail.messagingengine.com>
References: <8B903913-3025-479F-AF01-BC7259F3348B@sinodun.com>
	<1405338809.21430.141382409.019C3171@webmail.messagingengine.com>
Message-ID: <1405339351.32191.0.camel@mine>

Hi Ondrej,

On m?n, 2014-07-14 at 13:53 +0200, Ond?ej Sur? wrote:
> could you please add StartCom intermediate cert to the
> dist.opendnssec.org
> so wget doesn't fail when downloading? It's quite annoying...

I'll look at it.

-- 
Jerry Lundstr?m - OpenDNSSEC Developer
http://www.opendnssec.org/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 603 bytes
Desc: This is a digitally signed message part
URL: <http://lists.opendnssec.org/pipermail/opendnssec-maintainers/attachments/20140714/5d54b503/attachment.bin>

From jerry at opendnssec.org  Mon Jul 14 12:10:07 2014
From: jerry at opendnssec.org (Jerry =?ISO-8859-1?Q?Lundstr=F6m?=)
Date: Mon, 14 Jul 2014 14:10:07 +0200
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.6rc1 release candidate
In-Reply-To: <1405338809.21430.141382409.019C3171@webmail.messagingengine.com>
References: <8B903913-3025-479F-AF01-BC7259F3348B@sinodun.com>
	<1405338809.21430.141382409.019C3171@webmail.messagingengine.com>
Message-ID: <1405339807.32191.1.camel@mine>

Hi Ondrej,

On m?n, 2014-07-14 at 13:53 +0200, Ond?ej Sur? wrote:
> could you please add StartCom intermediate cert to the
> dist.opendnssec.org
> so wget doesn't fail when downloading? It's quite annoying...

Should be fixed now, can you check?

Thanks for the notice.

-- 
Jerry Lundstr?m - OpenDNSSEC Developer
http://www.opendnssec.org/

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 603 bytes
Desc: This is a digitally signed message part
URL: <http://lists.opendnssec.org/pipermail/opendnssec-maintainers/attachments/20140714/1b674891/attachment.bin>

From ondrej at sury.org  Mon Jul 14 12:14:52 2014
From: ondrej at sury.org (=?UTF-8?Q?Ond=C5=99ej=20Sur=C3=BD?=)
Date: Mon, 14 Jul 2014 14:14:52 +0200
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.6rc1 release candidate
In-Reply-To: <1405339807.32191.1.camel@mine>
References: <8B903913-3025-479F-AF01-BC7259F3348B@sinodun.com>
	<1405338809.21430.141382409.019C3171@webmail.messagingengine.com>
	<1405339807.32191.1.camel@mine>
Message-ID: <1405340092.25985.141389757.17352526@webmail.messagingengine.com>

On Mon, Jul 14, 2014, at 14:10, Jerry Lundstr?m wrote:
> Hi Ondrej,
> 
> On m?n, 2014-07-14 at 13:53 +0200, Ond?ej Sur? wrote:
> > could you please add StartCom intermediate cert to the
> > dist.opendnssec.org
> > so wget doesn't fail when downloading? It's quite annoying...
> 
> Should be fixed now, can you check?

lgtm, tyvm!

O.
-- 
Ond?ej Sur? <ondrej at sury.org>
Knot DNS (https://www.knot-dns.cz/) ? a high-performance DNS server


From sara at sinodun.com  Mon Jul 21 15:58:42 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Mon, 21 Jul 2014 11:58:42 -0400
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.3.18
Message-ID: <386A4444-3053-4AB0-9D0B-3E638BB164AF@sinodun.com>

All, 

Version 1.3.18 of OpenDNSSEC has now been released:

Updates:

* OPENDNSSEC-620: conf.xml: New options: <PidFile> for both enforcer and signer, and <SocketFile> for the signer.
* Build: Fixed various OpenBSD compatibility issues found by Patrik Lundin <patrik.lundin.swe () gmail.com>.
* New tool: ods-getconf: to retrieve a configuration value from conf.xml given an expression.

Bugfixes:

* OPENDNSSEC-632: ods-ksmutil: 'zone add' command when zonelist.xml.backup can't be written zone is still added to database, solved it by checking the zonelist.xml.backup is writable before adding zones, and add error message when add zone failed.
* OPENDNSSEC-624: memory leak when signer failed, solved it by add ldns_rr_free(signature) in libhsm.c
* simple-dnskey-mailer.sh: Fix syntax error. (by Patrik Lundin https://github.com/eest)
* libhsm: Fixed a few other memory leaks.

Documentation:

* http://wiki.opendnssec.org/display/DOCS13

Download:

* https://dist.opendnssec.org/source/opendnssec-1.3.18.tar.gz
* https://dist.opendnssec.org/source/opendnssec-1.3.18.tar.gz.sig
* Checksum SHA1: 6c860096257955b3559c1d42cf59047332f3d1ee
* Checksum SHA256: e61d23ae0cc57b6e09d408bade6872fe5241896c61a03e8bc5ceeb65df13a676


//OpenDNSSEC team



From sara at sinodun.com  Mon Jul 21 15:58:48 2014
From: sara at sinodun.com (Sara Dickinson)
Date: Mon, 21 Jul 2014 11:58:48 -0400
Subject: [Opendnssec-maintainers] OpenDNSSEC 1.4.6
Message-ID: <3AA0FFE9-7C3B-4775-AD12-F1D3F4695761@sinodun.com>

All, 

Version 1.4.6 of OpenDNSSEC is now available. This is the latest stable release.

Updates:

* Signer Engine: Print secondary server address when logging notify reply errors.
* Build: Fixed various OpenBSD compatibility issues found by Patrik Lundin <patrik.lundin.swe () gmail.com>.
* OPENDNSSEC-621: conf.xml: New options: <PidFile> for both enforcer and signer, and <SocketFile> for the signer.
* New tool: ods-getconf: to retrieve a configuration value from conf.xml given an expression.

Bugfixes:

* OPENDNSSEC-469: ods-ksmutil: 'zone add' command when zonelist.xml.backup can't be written zone is still added to database, solved it by checking the zonelist.xml.backup is writable before adding zones, and add error message when add zone failed.
* OPENDNSSEC-617: Signer Engine: Fix DNS Input Adapter to not reject zone the first time due to RFC 1982 serial arethmetic.
* OPENDNSSEC-619: memory leak when signer failed, solved it by add ldns_rr_free(signature) in libhsm.c
* OPENDNSSEC-627: Signer Engine: Unable to update serial after restart when the backup files has been removed.
* OPENDNSSEC-628: Signer Engine: Ingored notifies log level is changed from debug to info.
* OPENDNSSEC-630: Signer Engine: Fix inbound zone transfer for root zone.
* libhsm: Fixed a few other memory leaks.
* simple-dnskey-mailer.sh: Fix syntax error. (by Patrik Lundin https://github.com/eest)

Documentation:

* http://wiki.opendnssec.org/display/DOCS

Download:

* https://dist.opendnssec.org/source/opendnssec-1.4.6.tar.gz
* https://dist.opendnssec.org/source/opendnssec-1.4.6.tar.gz.sig
* Checksum SHA1: 2318b31546d0d4118cd03b9591ba76d259e1b0b0
* Checksum SHA256: 53f9c454f331822925d76c9d9e5e7cb3fe2dfb03e3c467f67f9412f10d0fd5ec


//OpenDNSSEC team