[nsd-users] NSD 4.1.27rc1 pre-release

Wouter Wijngaards wouter at nlnetlabs.nl
Tue Mar 19 12:51:09 UTC 2019


Hi,

NSD 4.1.27rc1 pre-release is available:
https://www.nlnetlabs.nl/downloads/nsd/nsd-4.1.27rc1.tar.gz
sha256 186b746d9230a129e3b3d5fc1e26cc25f176b9ae6c8974b14d856cff212d7e1e
pgp https://www.nlnetlabs.nl/downloads/nsd/nsd-4.1.27rc1.tar.gz


This is the maintainers pre-release of the NSD 4.1.27rc1 release.

This release contains improved deny-any responses, and on-the-fly
changes for tsig keys via nsd-control.  There is a number of bug fixes
as well.


4.1.27
================
FEATURES:
- Deny ANY with only one RR in response, by default.  Patch from
  Daisuke Higashi.  The deny-any statement in nsd.conf sets ANY
  queries over UDP to be further moved to TCP as well.
  Also no additional section processig for type ANY, reducing
  the response size.
- Fix #4215: on-the-fly change of TSIG keys with patch from Igor, adds
  nsd-control print_tsig, update_tsig, add_tsig, assoc_tsig
  and del_tsig.  These changes are gone after reload, edit the
  config file (or a file included from it) to make changes that
  last after restart.
BUG FIXES:
- Fix #4213: disable-ipv6 and dnstap compile error.
- Fix to reduce region_log_stats if condition, this removes a
  debug statement.
- Fix for FreeBSD port with dnstap enabled.
- Fix to remove unused code.
- Fix #6: nsd-control-setup: Change validity time to a shorter
  period (<2038).
- Fix unused definition in header remote.h.
- Fix #4236: IPV4_MINIMAL_RESPONSE_SIZE=1480 is slightly too big.
- Fix #4235: IP_PMTUDISC_OMIT on IPv4/UDP sockets.
- Fixed radtree_insert memory leak.
- Fixed access recycled variable.


Best regards, Wouter

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20190319/81c46cf4/attachment.bin>


More information about the nsd-users mailing list