[Dnssec-trigger] dnssec-trigger 0.12 release

W.C.A. Wijngaards wouter at nlnetlabs.nl
Thu May 22 08:03:28 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

The dnssec-trigger 0.12 release is available.

For Mac and Windows, dnssec-trigger asks the user for update
permission in the next day.  For users with custom set-up: please note
that the auto updater will try to sed-edit the config file because
some default IP addresses have changed (NLnet Labs is changing network
prefix).

http://www.nlnetlabs.nl/downloads/dnssec-trigger/dnssec-trigger-0.12.tar.gz
sha1 5fcc642d8dae63524aa769f7129cf4454bdb42e5
sha256 1cafd9ec296edc1d17b9ed2a98e06c7057c80ef1dbd6d45dbfa11991d3703535

Changes
- - log correct type in timeout for TXT.
- - restart panels on install on OSX.
- - Fix OSX user panel stop and start in reinstall, also fix for double
  popups during reinstall.
- - Fix crash on read of ssl443 entry without a hash.
- - Squelch address family not supported errors (on low verbosity).
- - Fix networkmanager hook to detect if it has to use the new
  commandline syntax of networkmanager 0.9.4.
- - Fixup uniqueid for Mountain Lion OSX 10.8 release, you have to
  run the installer again (upgrade or uninstall-reinstall).
- - bug 489: removed Application deprecated keyword from .desktop file.
- - OSX wake listener implementation.
- - patch for OSX that passes all domains from search to the OS (from
  Phil Pennock).
- - Fixup snprintf return value usage.
- - Fixup OSX backquote backslashes.  Removed wrong OSX version from
  its installer text.
- - Let system dealloc feed and feed_lock on OSX and Linux/BSD.
- - Fixup new glib deprecated calls.
- - Patch from Tomas Hozza to improve the networkmanager connect
  script for VPN connections.  It adds forward zones for the VPN
  over the VPN connection.
- - Fix#522: Errors found by static analysis of source from Tomas Hozza.
- - Fix NM dispatcher script to work with NM >= 0.9.9.0 (Thanks Tomas
  Hozza).
- - Patch from Tomas Hozza that improves text in dialogs (on linux).
- - Added fedora/dnssec-trigger-resolvconf-handle.sh from Tomas
  Hozza, that will backup and restore resolv.conf for use in
  systemd.service scripts and networkmanager scripts.
- - Added contrib networkmanager dispatcher script from Tomas Hozza.
- - Added patch to networkmanager dispatcher script and also
  an example dnssec.conf file from Tomas Hozza.
- - Fix #551: Change Regents to Copyright holder in License.
- - Patches from Tomass Hozza; Explicitly-use-Python2-interpreter,
  Fix-situation-when-connection-is-going-down,
  resolv.conf-backup-script-restart-NM-to-handle-resolv.conf,
  Update-systemd-service-files-to-latest-version-used.
- - Patch from Pavel Simerda: better integration with NetworkManager and
  distributions, added in contrib.
- - Removed files obsoleted by patch from Pavel Simerda:
  contrib/01-dnssec-trigger-hook-new_nm
  (replaced with dnssec-trigger-script and 01-dnssec-trigger)
  fedora/dnssec-triggerd.service
  (new version in contrib)
  fedora/dnssec-triggerd-resolvconf-handle.service
  (handled by dnssec-triggerd.service directly)
  fedora/dnssec-trigger.spec
  (spec files are maintained separately)
  fedora/dnssec-triggerd-keygen.service
  (new version in contrib)
  fedora/dnssec-triggerd-resolvconf-handle.sh
  (handled by dnssec-trigger-script directly)
  fedora/dnssec-triggerd.init
  (only used in epel6 which hasn't been updated for ages)
- - Renamed 01-dnssec-trigger-hook to 01-dnssec-trigger with the
  networkmanager naming scheme.  (From Pavel Simerda).
- - Patch from Pavel Simerda that incorporates contrib items into
  the build install system.  Systemd scripts, dnssec-trigger-script,
  dnssec.conf.
- - Patch for dnssec-trigger-script.in --async flag from Pavel Simerda,
  stops dnssec-trigger-script to block on networkmanager, which is
  good in cases when networkmanager blocks on the script.
- - Change the ip-address of tcp and ssl service from broer.nlnetlabs.nl
  to zus.nlnetlabs.nl (we changed netblocks).  The new ip address
  and new certificate fingerprint (because of ssl heartbleed vuln)
  are in the example.conf file.  The cert was only used for transport
  and not for authentication, so its change was low priority.
- - Updated dnssec-trigger-script.in to distinguish secure and
  insecure zones, and to flush the unbound cache on DNS server
  list changes. (from Pavel Simerda).

Best regards,
   Wouter
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
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=cZtR
-----END PGP SIGNATURE-----



More information about the dnssec-trigger mailing list