Version 2.5.3
Friday, July 14, 2017
Features:
- CSK rollover support for Single-Type Signing Scheme
Improvements:
- Allowed binding to non-local adresses for TCP (Thanks to Julian Brost!)
- New documentation section for manual DNSSEC key algorithm rollover
- Initial KSK also generated in the submission state
- The 'ds' keymgr command with no parameter uses all KSK keys
- New debug mode in kjournalprint
- Updated keymgr documentation
Bugfixes:
- Sometimes missing RRSIG by KSK in submission state
- Minor DNSSEC-related issues