PowerDNS 2.9.22 released, RFC 5452 assigned!

Posted by bert hubert Tue, 27 Jan 2009 21:56:00 GMT

Hi everybody!

What a day! Remco van Mook and I received a message today that our RFC Draft (full text here) has entered the ‘AUTH48’ stage. This means that it has been assigned a number (RFC 5452!), and that barring meteor strikes or similar things, we are now finally done. Yay!

We spent 2 years and 9 months on this. It felt like even more. I’ve been told the draft has already made a difference in some places - from now on, DNS implementations that have certain bad spoofing behaviour MUST clean up their act :-)

In short, had this RFC been followed, the whole Kaminsky DNS scare could have been prevented. Do note that the draft is 2 years older than Kaminksy’s discovery. The DNS community should have listened to Dan Bernstein *10* years ago.

Some more thoughts on this subject can be found here. I’m slightly bitter.

As if the RFC weren’t enough excitement for one day, I also released PowerDNS Authoritative Server 2.9.22, the first release of the authoritative server in almost 20 months. Because of this long delay, a lot of effort was spent field testing this release before it ‘went gold’ (to use an expression I really despise).

I sincerely hope we shook out most of the bugs. The PowerDNS community really delivered, and many of our enthusiastic users deployed pre-release code on their significant installations, to make sure everybody else would be able to upgrade with confidence.

Read the whole store here.

Posted in  | 3 comments


  1. Sean Leach said about 5 hours later:
    Congrats Bert!
  2. Lennie said 11 days later:
    And he keeps on going with www.ENDS-ping.org as the next draft he's working on
  3. Lennie said 11 days later:
    sorry, that was a typo, it's: www.EDNS-ping.org

(leave url/email »)

   Preview comment