CHANGES

author Evan Hunt <each@isc.org>

Wed, 3 Feb 2021 21:21:04 +0000 (13:21 -0800)

committer Evan Hunt <each@isc.org>

Wed, 17 Feb 2021 00:24:52 +0000 (16:24 -0800)
author Evan Hunt <each@isc.org>
Wed, 3 Feb 2021 21:21:04 +0000 (13:21 -0800)
committer Evan Hunt <each@isc.org>
Wed, 17 Feb 2021 00:24:52 +0000 (16:24 -0800)
diff --git a/CHANGES b/CHANGES

index fb695d438e4a1ce5e7d0b63a4e25278d28562679..b2b7d59835ae781e1c1d75fc857a048e076646fd 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,16 @@
+5583.  [func]          Changes to DoH configuration syntax:
+                       - When "http" is specified in "listen-on" or
+                         "listen-on-v6" statements, "tls" must also now
+                         be specified. If an unencrypted connection is
+                         desired (for example, when running behind a
+                         reverse proxy), use "tls none".
+                       - "http default" can how be specified in "listen-on"
+                         and "listen-on-v6" statements to use the default
+                         HTTP endpoint, "/dns-query". It is no longer
+                         necessary to include an "http" statement in
+                         named.conf unless overriding this value.
+                       [GL #2472]
+
  5582.  [bug]           BIND 9 failed to build when static OpenSSL libraries
                         were used and the *.pc files for libssl and/or libcrypto
                         were unavailable. This has been fixed by ensuring the
author	Evan Hunt <each@isc.org>
	Wed, 3 Feb 2021 21:21:04 +0000 (13:21 -0800)
committer	Evan Hunt <each@isc.org>
	Wed, 17 Feb 2021 00:24:52 +0000 (16:24 -0800)