From: Peter van Dijk Date: Thu, 1 Jun 2023 11:04:59 +0000 (+0200) Subject: auth-4.8.0: docs and secpoll X-Git-Tag: rec-4.10.0-alpha0~17^2 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=refs%2Fpull%2F12874%2Fhead;p=thirdparty%2Fpdns.git auth-4.8.0: docs and secpoll --- diff --git a/docs/changelog/4.8.rst b/docs/changelog/4.8.rst index 7cca297338..cd4af69a0b 100644 --- a/docs/changelog/4.8.rst +++ b/docs/changelog/4.8.rst @@ -1,6 +1,46 @@ Changelogs for 4.8.x ==================== +.. changelog:: + :version: 4.8.0 + :released: 1st of June 2023 + + This is release 4.8.0 of the Authoritative Server. + + In 4.8, the LMDB backend gains a new Lightning Stream-compatible schema, which requires a data migration (this is automatic, and there is no migration back to the old schema). + LMDB backend users should pay extra attention to the :doc:`Upgrade Notes <../upgrading>`. + + `Lightning Stream `_ is an `open source `_ data syncer that allows multiple nodes to sync LMDB (Lightning Memory-Mapped Database) data to and from an S3 (compatible) bucket. This has particular advantages in distributed and/or large-scale applications (i.e. ~1 million records), making DNS replication much, much easier to manage. + + We are excited about how Lightning Stream simplifies running multiple distributed PowerDNS Authoritative servers, with full support for keeping record data and DNSSEC keys in sync, from multiple writers. + + 4.8.0 improves the handling of accidental duplicate domains -- deleting a zone now deletes all versions of it. + This release also contains a few other fixes, please see the list below. + + .. change:: + :tags: Bug Fixes + :pullreq: 12869 + + do not answer with broken TYPE0 data when expanding an ENT wildcard + + .. change:: + :tags: Bug Fixes + :pullreq: 12872 + + lmdb: delete duplicate domain entries in deleteDomain + + .. change:: + :tags: Bug Fixes + :pullreq: 12868 + + pdnsutil: if user pushes unknown key in response to "problem with zone" prompt, do not throw away their changes + + .. change:: + :tags: Bug Fixes + :pullreq: 12828 + + add setting workaround-11804-max-chunk-records + .. changelog:: :version: 4.8.0-beta1 :released: 4th of May 2023 diff --git a/docs/secpoll.zone b/docs/secpoll.zone index 470b39aa16..233509b0cc 100644 --- a/docs/secpoll.zone +++ b/docs/secpoll.zone @@ -1,4 +1,4 @@ -@ 86400 IN SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2023050402 10800 3600 604800 10800 +@ 86400 IN SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2023060101 10800 3600 604800 10800 @ 3600 IN NS pdns-public-ns1.powerdns.com. @ 3600 IN NS pdns-public-ns2.powerdns.com. @@ -119,7 +119,8 @@ auth-4.7.2.security-status 60 IN TXT "1 OK" auth-4.7.3.security-status 60 IN TXT "1 OK" auth-4.7.4.security-status 60 IN TXT "1 OK" auth-4.8.0-alpha1.security-status 60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)" -auth-4.8.0-beta1.security-status 60 IN TXT "1 Unsupported pre-release" +auth-4.8.0-beta1.security-status 60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)" +auth-4.8.0.security-status 60 IN TXT "1 OK" ; Auth Debian auth-3.4.1-2.debian.security-status 60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/3/security/powerdns-advisory-2015-01/ and https://doc.powerdns.com/3/security/powerdns-advisory-2015-02/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-02/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-03/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-04/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-05/"