auth-4.5.0-rc2: docs and secpoll

diff --git a/docs/changelog/4.5.rst b/docs/changelog/4.5.rst
index d5691272d8ca8a762192a06fd7c8c986e1f8a500..0426e932327a7f96f71833a6fe9e18dd5997aaa5 100644 (file)
--- a/docs/changelog/4.5.rst
+++ b/docs/changelog/4.5.rst
@@ -1,6 +1,40 @@
 Changelogs for 4.5.x
 ====================
 
+.. changelog::
+  :version: 4.5.0-rc2
+  :released: 6th of July 2021
+
+  This is the second, and hopefully last, release candidate for version 4.5.0 of the Authoritative Server.
+  This release contains a ton of improvements and bug fixes compared to 4.4, but very few user visible changes.
+
+  There are two notable new features:
+
+  * The 'zone cache', which allows PowerDNS to keep a list of zones in memory, updated periodically.
+    With this cache, PowerDNS can avoid hitting the database with queries for unknown domains.
+    In some setups, and some attack scenarios, this can make a serious performance difference.
+    Many thanks to Chris Hofstaedtler for implementing this.
+  * Priority ordering in the AXFR queue in PowerDNS running as a secondary.
+    Some users with a lot of domains (>100k) sometimes found real changes waiting behind signature refreshes on Thursdays.
+    With the new ordering, those real changes can 'skip the line' and get deployed on your secondaries faster.
+    Many thanks to Robin Geuze for implementing this.
+
+  Since 4.5.0-beta1, the zone cache is enabled by default.
+
+  Please make sure to read the :doc:`upgrade notes <../upgrading>` before upgrading.
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: 10552
+
+    bindbackend: purge caches on zone reload; store nsec3 settings at zone load
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: 10551
+
+    Use correct TTL when caching responses from backends (Robin Geuze)
+
 .. changelog::
   :version: 4.5.0-rc1
   :released: 25th of June 2021

diff --git a/docs/secpoll.zone b/docs/secpoll.zone
index abe8cf86daec7bb0910eac41562ce4b302434129..2904408b15705b77f3fc11ecdfdb49090371eb10 100644 (file)
--- a/docs/secpoll.zone
+++ b/docs/secpoll.zone
@@ -1,4 +1,4 @@
-@       86400   IN  SOA pdns-public-ns1.powerdns.com. pieter\.lexis.powerdns.com. 2021070200 10800 3600 604800 10800
+@       86400   IN  SOA pdns-public-ns1.powerdns.com. pieter\.lexis.powerdns.com. 2021070600 10800 3600 604800 10800
 @       3600    IN  NS  pdns-public-ns1.powerdns.com.
 @       3600    IN  NS  pdns-public-ns2.powerdns.com.
 
@@ -80,7 +80,8 @@ auth-4.4.0.security-status                              60 IN TXT "1 OK"
 auth-4.4.1.security-status                              60 IN TXT "1 OK"
 auth-4.5.0-alpha1.security-status                       60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
 auth-4.5.0-beta1.security-status                        60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
-auth-4.5.0-rc1.security-status                          60 IN TXT "1 OK"
+auth-4.5.0-rc1.security-status                          60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
+auth-4.5.0-rc2.security-status                          60 IN TXT "1 OK"
 
 ; Auth Debian
 auth-3.4.1-2.debian.security-status                     60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/3/security/powerdns-advisory-2015-01/ and https://doc.powerdns.com/3/security/powerdns-advisory-2015-02/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-02/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-03/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-04/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-05/"