Welcome to OpenDNSSEC
The OpenDNSSEC project announces the development of Open Source software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.
- More information about OpenDNSSEC
- List of authors
- OpenDNSSEC features
- Where to download OpenDNSSEC
- Where to get support
The latest news about OpenDNSSEC can be found below!
Version 1.3.14 of OpenDNSSEC has now been released:
- OPENDNSSEC-367: ods-ksmutil: Require user confirmation if the algorithm for a key is changed in a policy (as this rollover is not handled cleanly)
- OPENDNSSEC-91: Make the keytype flag required when rolling keys
- OPENDNSSEC-403: Signer Engine: new command ‘ods-signer locks’ that shows locking information (for debugging purposes).
- OPENDNSSEC-247: Signer Engine: TTL on NSEC3 was not updated on SOA Minimum change.
- OPENDNSSEC-396: Use TTLs from kasp when generating DNSKEY and DS records for output.
- OPENDNSSEC-398: The ods-ksmutil key rollover command does not work correctly when rolling all keys using the –policy option
- SUPPORT-40: Signer Engine: Keep occluded data in signed zone files/transfers.
- Checksum sha1: 9e6be8b42ab25cf1984f00326d44d0c195e00ef2
- Checksum sha256: 04016069f980191fac446ccab51f06bc7969d7544997c9e538ca1c170c2f42f5
Version 1.4.0 of OpenDNSSEC has now been released. This is the latest stable release.
Updates since 1.4.0rc3:
- Production release of 1.4
- Versioning scheme and release support policies updated
- Summary of changes in 1.4 vs 1.3 can be found on the wiki:
New in OpenDNSSEC 1.4
Version 1.4.0rc3 of OpenDNSSEC has now been released. This version is recommended for testing only, not for use in production environments.
- Further testing of OPENDNSSEC-387 completed, release returned to rc status.
- Checksum sha1: 9b824bd8be628a77daa8afd0079052978b10029b
- Checksum sha256: 7b572604522218125f800af59dfd33667c6cbc92ebaea3ef0dcd2edb8a0a4443