Projects / OpenDNSSEC


OpenDNSSEC is software that manages the security of domain names on the Internet. The project intends to drive adoption of Domain Name System Security Extensions (DNSSEC) to further enhance Internet security.

Operating Systems

Recent releases

  •  06 May 2014 13:57

    Release Notes: This release optimized storage in HSM, logs the serial of signed zones in the STATS line, provides NSEC3 records on empty non-terminals, checks for the existence of SOA RRset, and extended the 'key list' command. It fixed ods-ksmutil key import, date validation errors, and an off-by-one length check error in libhsm. In libhsm, cleanup was improved for C_FindObjects. The Signer Engine no longer replaces tabs in RRs with whitespace. Possible memory corruption in hsm_get_slot_id was fixed. A race condition when stopping the Signer Engine daemon was fixed. enforcer and ods-ksmutil now have improved logging on key creation and allocation.

    •  11 Apr 2014 17:26

      Release Notes: This release fixes libhsm not using all mandatory attributes for GOST key generation and the "key list" command failing with an error in 1.4.4 on MySQL.

      •  11 Sep 2013 13:30

        Release Notes: This release adds an option for 'ods-ksmutil key generate' to take the number of zones as a parameter. Several important bugfixes have been made.

        •  04 Dec 2012 09:55

          Release Notes: SUPPORT-42: ./configure fails on FreeBSD (or if ldns is not installed in a directory in the default search path of the complier). OpenDNSSEC does not compile against ldns 1.6.16 on platforms that rely on the OpenDNSSEC implementation of strlcpy/cat.

          •  13 Nov 2012 14:25

            Release Notes: NSEC3PARAM TTL should be set to zero. Bugfixes: OPENDNSSEC-306 (can't delete zone until Enforcer made signerconf); OPENDNSSEC-281 (Commandhandler was sometimes unresponsive); OPENDNSSEC-299 (ods-ksmutil now includes policy import); OPENDNSSEC-300 (ods-ksmutil policy purge documented with a warning); OPENDNSSEC-338 (fixes zone deletion on MySQL in ods-ksmutil (broken by SUPPORT-27)); OPENDNSSEC-342: auditor comparisons made case-insensitive; and OPENDNSSEC-345 (in ods-ksmutil, use ods-control to HUP the enforcerd process).

            Recent comments

            10 Feb 2010 18:03 mdavids

            Excellent team of developpers. Good work. May need some improvements, but I am sure they will be incorporate in future releases.


            Project Spotlight


            A Fluent OpenStack client API for Java.


            Project Spotlight

            TurnKey TWiki Appliance

            A TWiki appliance that is easy to use and lightweight.