Bug#681448: unblock: nsd3/3.2.11-1
On Fri, Jul 13, 2012 at 10:37:44 +0200, Ondřej Surý wrote: Please unblock package nsd3 Is this still relevant, or are we going with 3.2.10? I didn't see a reply to Niels's request. Cheers, Julien signature.asc Description: Digital signature
Bug#681448: unblock: nsd3/3.2.11-1
On Sat, Jul 21, 2012 at 12:32 PM, Julien Cristau jcris...@debian.org wrote: On Fri, Jul 13, 2012 at 10:37:44 +0200, Ondřej Surý wrote: Please unblock package nsd3 Is this still relevant, or are we going with 3.2.10? I didn't see a reply to Niels's request. I replied to Niels privately because of the security bug. I'll sieve through the updates between 3.2.10 to 3.2.12 and send them as separate stuff for consideration. O. -- Ondřej Surý ond...@sury.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#681448: unblock: nsd3/3.2.11-1
On 2012-07-13 10:37, Ondřej Surý wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package nsd3 Since this version will be the next supported I would like to push latest upstream, which: - add support for TLSA RR type - add support for ECDSA (Elliptic Curve algorithms) in DNSSEC Both of these will hopefully used in upcoming years: - EC algorithms have nice properties of being smaller and faster, so people will rollover to them once the support in DNSSEC validators is prevalent - TLSA allows certificate pinning (and even Debian would benefit from that as you can add trust anchor on the fly for self-signed CAs and certs). We hope to see support in browsers/MTAs/MUAs etc. start to growing as the protocol is almost a standard (in RFC-Editor queue for those who knows what that means :)). The upstream release also includes few minor fixes in IXFR code and new zone stats, which I haven't enabled since it's a new code. (I could cherry-pick these two main mentioned features, but I feel it's not worth it as NSD3 has no rev-deps and the codebase is stable.) unblock nsd3/3.2.11-1 [...] Hi, The changes sums up to: 79 files changed, 2907 insertions(+), 2130 deletions(-) Which is way more than I can sanely review. Can you generate a manual debdiff where you filter out the auto-generated files (e.g. configlexer.c)? That might give a better view of what is happening. I also noticed this gbp.conf change, which was probably unintented. -debian-branch = debian-sid +debian-branch = debian-backports -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#681448: unblock: nsd3/3.2.11-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package nsd3 Since this version will be the next supported I would like to push latest upstream, which: - add support for TLSA RR type - add support for ECDSA (Elliptic Curve algorithms) in DNSSEC Both of these will hopefully used in upcoming years: - EC algorithms have nice properties of being smaller and faster, so people will rollover to them once the support in DNSSEC validators is prevalent - TLSA allows certificate pinning (and even Debian would benefit from that as you can add trust anchor on the fly for self-signed CAs and certs). We hope to see support in browsers/MTAs/MUAs etc. start to growing as the protocol is almost a standard (in RFC-Editor queue for those who knows what that means :)). The upstream release also includes few minor fixes in IXFR code and new zone stats, which I haven't enabled since it's a new code. (I could cherry-pick these two main mentioned features, but I feel it's not worth it as NSD3 has no rev-deps and the codebase is stable.) unblock nsd3/3.2.11-1 -- System Information: Debian Release: 6.0.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
