OpenDNSSEC 1.4.0b3

Version 1.4.0b3 of OpenDNSSEC has now been released. This version is recommended for testing only, not for use in production environments.

*NOTE: This release is marked as a beta release (rather than rc3) due to OPENDNSSEC-387, which is a significant functional change compared to rc2.


  • OPENDNSSEC-387: Rollback of multi-threaded enforcer. Due to key allocation issues the usefulness of the threaded enforcer is outweighed by the code complications. The option still remains in conf.xml for compatibility with existing use; but it will now be silently ignored.


  • OPENDNSSEC-388: Signer Engine: Internal serial should take into account the inbound serial.
  • SUPPORT-50/51: Signer Engine: Inbound DNS Adapter incorrectly updates NSEC3PARAM and DNSKEY RRset [OPENDNSSEC-389]
  • OPENDNSSEC-389: Input DNS Adapter incorrectly updating NSEC3PARAM and DNSKEY RRsets



**NOTE: This release is signed with the new OpenDNSSEC Distribution key (2013) available from:


Comments are closed.