Fedora 12 Update: dnssec-conf-1.21-7.fc12

updates at fedoraproject.org updates at fedoraproject.org
Tue Feb 9 05:01:16 UTC 2010 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-1572
2010-02-09 04:26:31
--------------------------------------------------------------------------------

Name        : dnssec-conf
Product     : Fedora 12
Version     : 1.21
Release     : 7.fc12
URL         : http://www.xelerance.com/software/dnssec-conf/
Summary     : DNSSEC and DLV configuration and priming tool
Description :
DNSSEC configuration and priming tool. Keys are required until the root
is signed, as well as for local unpublished DNSSEC keys to be preloaded
into the recursive nameserver. These DNSSEC configuration files can be
directly included in the bind or unbound nameserver configuration files.
dnssec-conf includes a commandline configuration client for Bind and
Unbound, known DNSSEC keys, URL's to official publication pages of keys,
and harvested keys, as well a script to harvest DNSKEY's from DNS.
See also: system-config-dnssec

--------------------------------------------------------------------------------
Update Information:

Package contained expired trust anchors for RIPE's reverse zones, causing
significant traffic from bind servers repeatedly trying to obtain non-existing
DNSKEY's See https://lists.isc.org/pipermail/bind-
users/2010-February/078726.html
--------------------------------------------------------------------------------
ChangeLog:

* Fri Feb  5 2010 Paul Wouters <paul at xelerance.com> - 1.21-7
- Bump tag
* Fri Feb  5 2010 Paul Wouters <paul at xelerance.com> - 1.21-6
- Do not ship (expired!) DNSSEC trust anchors for in-addr.arpa zones.
  Rely on the DLV and (from July 2010 onwards) the signed root
- Use trigger to recreate an updated named.dnssec.keys and restart nameservers
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update dnssec-conf' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list