Skip to content

Release v7.0.0 (public fix release)
Compare
Choose a tag to compare
@matsduf matsduf released this 18 Sep 14:24
· 1186 commits to master since this release
v7.0.0
7f5e133
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

[Fixes]

  • By design adding a API user (needed for the batch function) is limited to connections over localhost. With a default GUI installation with reverse proxy all connections are over localhost, which means that adding a API user is publicly available if the GUI is publicly available. If you can add API users, then you can start several large batch jobs which may overload the Zonemaster system. (#838, #850)
    • Makes RPCAPI use the real remote IP for verification to restore the limitation that the API key can only be added from localhost.
    • Disables RPCAPI method "add_api_user" by default.
    • Adds configuration key for "backend_config.ini" to enable RPCAPI method "add_api_user".
    • Adds configuration key for "backend_config.ini" to disnable RPCAPI method "add_batch_job".
  • Prevents RPCAPI daemon to recreate workers when workers crashed to do error in configuration file. This is a FreeBSD specific error. (#813, #862)

Details on previous releases are found in the Changes file or in the releases page. The release has been published at CPAN. The recommended installation path is to start with the Zonemster-Engine Installation instructions. If Zonemaster-Backend is updated, then an upgrade of the zonemaster database may be required. See the upgrade section in the Zonemaster-Backend main README. For general information go to the Zonemaster README.

Assets 2