From berry at nlnetlabs.nl Tue Nov 8 11:34:02 2022 From: berry at nlnetlabs.nl (Berry van Halderen) Date: Tue, 08 Nov 2022 12:34:02 +0100 Subject: [Opendnssec-user] Release of OpenDNSSEC 2.1.12 Message-ID: <58bf09b80e30093543b5661dbc0efdcc@nlnetlabs.nl> Dear all, OpenDNSSEC 2.1.12 has been released today (2022-11-08), and is available immediately from our regular download site: https://dist.opendnssec.org/source/opendnssec-2.1.12.tar.gz SHA256: 50d7b9b0ccfc6a502784606ca4e5c03680fcf6425fb3947f45d8809ea8503e59 After the 2.1.11 release it turned out that there were some additional issues related to the fixed issues that needed addressing. Although the previous release is usable, this is the release that you want to address issues relating to shared-keys and salt lengths of zero. \Berry * Ensure debug symbols on RPM-style builds; * Bug fix that prevented restoring state from when salt length was zero; * Bug fix for enforcer daemon crash after deleting key on some systems From mat at parad0x.org Tue Nov 1 09:09:44 2022 From: mat at parad0x.org (Mathieu Mirmont) Date: Tue, 01 Nov 2022 09:09:44 -0000 Subject: [Opendnssec-user] Expired tarball signing key (Distribution Key 2017) Message-ID: <20221101090101.GA25825@parad0x.org> Hi all, The tarball for 2.1.11 is signed with an expired PGP key: $ gpg --verify opendnssec-2.1.11.tar.gz.sig opendnssec-2.1.11.tar.gz gpg: Signature made Mon Oct 17 11:35:46 2022 CEST gpg: using RSA key 41F623BE4FCB0B94 gpg: Good signature from "OpenDNSSEC Distribution Key 2017 " [expired] gpg: Note: This key has expired! Primary key fingerprint: 4D03 88CE 86BB 398B 387B 6630 41F6 23BE 4FCB 0B94 No biggie, but maybe it would be time to rotate the key. Cheers, -- Mathieu Mirmont -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: Digital signature URL: