inadyn

Fixes

• Issue #340: the new settings ttl and proxied, introduced in v2.8, were missing from custom provider sections. Found and fixed by André Colomb

Packages for Debian 10, or later, and compatible Ubuntu releases, available at https://deb.troglobit.com/

Improved --exec SCRIPT support and massive Cloudflare plugin updates.

Changes

• Issue #306: New keyword default to use the built-in In-a-dyn default checkip-server in the configuration file
• Issue #306: Automatically fall back to use built-in checkip-server if the provider's server fails. Warnings added to log so user can change their preferences
• Issue #310: Extended support for external script. By default it runs only on successful DDNS update (compat mode). New event mode calls the script on any action, with added new environment variables.
• Cloudflare plugin, curated by Simon Pilkington:
  • Increased size of response buffer, JSON reply is quite big and In-a-dyn is used to one-liner replies from most servers
  • Add ttl option, by なつき
  • Add proxied option, by なつき
  • Use 1.1.1.1 as default checkip server, by なつき
  • Updated examples for IPv4 and IPv6, by なつき
• New multi-arch docker image, by なつき

Fixes

• Issue #309: Do not attempt to chown(2) the cache or pidfile dirs, because this may fail and cause In-a-dyn to fail. Users that want to drop-privs must ensure the cache and pidfile directories are writable by the -p uid:gid specified
• Issue #313: Cloudflare, get zone name from username field in config
• Issue #314: twoDNS changed API, drop support and remove custom example
• Issue #327: Fix duiadns.net plugin, by Sergey Aleynikov
• Issue #328: Fix TLS regression with multiple data packets, by なつき
• Issue #329: Fix creation of new Cloudflare record, by なつき
• Fix default install prefix, regression introduced in v2.6

Packages for Debian 10, or later, and compatible Ubuntu releases, available at https://deb.troglobit.com/

Packages for Debian 10, and compatible Ubuntu releases, available at https://deb.troglobit.com/

Changes

• Issue #301: Add broken-rtc = <true | false> .conf file setting, by Vladislav Grishenko
• Issue #302: Add common authentication failure error code handling, by Vladislav Grishenko
• Issue #308: Improve Dockerfile by using the same commit of the current Dockerfile to to build inadyn. Previously the Dockerfile always pulled the latest git master, by Dominik Courcelles

Fixes

• Fix #300: --force option not being recognized, by Eric Sauvageau
• Fix #305: Fix hash generation regression in FreeDNS plugin, found and fixed by Eric Sauvageau and Vladislav Grishenko

NOTE: The -1, --once mode has changed semantics, it no longer
defaults to forced update, for that you now need --force

Changes

• Add support for Cloudflare, by Simon Pilkington and Jo Rhett
• Add Yandex PDD (Yandex.Connect) plugin, by Timur Birsh
• Add Dockerfile for running In-a-Dyn from an Alpine container, by Jean-Ralph Aviles with fixes by Robin Bürkli and Richard Powell
• Drop support for TZO, acqured by Dyn in 2012 and no longer works
• Drop support for DtDNS, shut down August 1, 2018
• Drop support for DynSIP, dropped off the Internet in 2014
• Drop support for Zerigo, shut down in 2017

Fixes

• Fix #222: Simplify utimensat() replacement for macOS Sierra
• Fix #223: Sync up with accepted Homebrew formula, by Jo Rhett
• Fix #231: Update build requirements and recommendations
• Fix #233: Fix building with OpenSSL >1.1, by Rosen Penev
• Fix #235: dynv6, don't signal error on unchanged address
• Fix #239: Boundary check of MAX supported hostname aliases, bumped max aliases from 20 -> 50 per provider
• Fix #241: OpenBSD header ordering, tested on OpenBSD 6.1
• Fix #242: Mention libtool requirement when building from GIT
• Fix #247: Check if PID is actually running if PID file exists
• Fix internal buffer size warnings, found by GCC-9 (freeDNS)
• Fix #256: Document how to use Google Domains plugin
• Fix #262: Use .com TLD instead of .org for DynDNS, because the latter cannot be resolved in China, by Eric Sauvageau
• Fix #268: Set SIGCHLD to SIG_IGN to reap children, by Markus Gothe
• Fixes to socket leaks, memory corrupions, buffer overflows and more, found by Coverity Scan
• Fix configure script to allow --prefix= for install to /sbin
• Fix #274: D.U.I.A. DNS basic authentication, by Markus Gothe
• Fix #276: Change --once behavior, now requires --force to update
• Fix default checkip server for PubYun/3322, bliao.com not working.
  This patch adds support for the official 3322 checkip server
• Fix #277: See #235 but also for IPv4 ...
• Fix #297: api.ipify.org default checkip server for custom providers

Changes

• macOS changes by Jo Rhett:
  • Add linking with -lresolv
  • Use Homebrew's CA trust store
  • Update REDAME with install help
• Add support for selfhost.de DDNS

Fixes

• Fix #211: Only show DDNS server response on successful transaction
• Fix #211: Improved error handling in OpenSSL back-end
• Fix #214: Add nochg to list of good responses for custom providers
• Fixes by Eric Sauvageau:
  • Fix #216: Add DNS lookup exception for all.dnsomatic.com
  • Fix #219: Add DNS lookup exception for [email protected]

Changes

• Add support for Dynu DDNS provider

Fixes

• Add missing defines for LLONG_MAX and LLONG_MIN on some platforms
• Fix #209: Update FreeDNS plugin to use v2 of their API to fetch update key for IPv4 and IPv6 records
• Fix #210: Use ~/.cache/inadyn or ~/.inadyn when running unprivileged

This minor bug fix release holds Debian packaging fixes by André Colomb, @acolomb

Changes

• Make .deb files an official part of releases

Fixes

• Fix installation of inadyn in /usr/sbin and symlink in /usr/bin
• Rename debian/inadyn.links to be standards-compliant
• Update deprecated build dependency for dh-systemd
• Fix lintian warning about unsafe symlinks for build scripts
• Version numbers containing a dash are inappropriate for 'native' packages, bump revision instead

Changes

• Distribute CONTRIBUTING.md in release tarballs, by André Colomb
• Clean up debug messages for HTTPS connections, by André Colomb
• New build-depends, libgnutls28-dev for Debian/Ubuntu users and GnuTLS >= 3.0 for others, by André Colomb
• Issue #192: Add examples/*.conf to source distribution, by André Colomb

Fixes

• TCP, not UDP, for getaddrinfo() hints + numeric lookups, by André Colomb
• Disable SSL for checkip connections to SPDYN service, by André Colomb
• Issue #186: Allow IPv6 for HTTP(S) connections, by André Colomb
• Issue #189: Ignore premature session termination in GnuTLS, by André Colomb
• Issue #193: Fix broken internal links in README.md, by André Colomb

Fixes

• Issue #174: gnutls.c missing stdint.h, fix for ArchLinux
• Issue #179: Update easyDNS plugin to new API, by Nicholas Alipaz

Changes

• Use HTTP by default for DYN.com checkip server, used by many DDNS providers that do not have their own. This change is far more user friendly since you no longer have to explicitly set checkip-ssl=false for the most common use-case.
• Some DDNS providers have multiple IP addresses registered for the same service, as of this release Inadyn immediately tries to connect to the next listed addresses on connection problems.
• Issue #153: Support for custom HTTP User Agent. Useful with providers that require using a specific brower. Set to, e.g. "Mozilla/4.0", or rely on the default "inadyn/VERSION" user agent.
• Support for the %% format specifier in custom server URL's, as mentioned in issue #152.
• Add support for a .conf syntax checker: inadyn --check-config
• Add support for logging to stderr when running in foreground or without syslog enabled
• Simplified provider name lookup in .conf file. Now substring match is used, resulting in support for provider Dyn { ... }.
• Remove libite dependency by importing all its used files into inadyn. This should ease adoption by distributions and end users. All code is under free licenses: BSD, ISC.
• Import Timur's Debian packaging, adding debconf support

Fixes

• Issue #152: Do not attempt to create PID file in oneshot mode (-1)
• Issue #152: Must URL encode custom server URL's
• Issue #170: Use configured --prefix not hard coded /etc/inadyn.conf
• Issue #172: Use separate variable for --iface command line option and .conf file option

Changes

• Use HTTPS instead of HTTP by default
• Support for disabling HTTPS for checkip-server, per provider.
  Idea from Valery Frolov
• Add -I,--ident=NAME option for syslog+pidfile name
• Deprecate --pidfile=NAME option in favor of --ident=NAME

Fixes

• Issue #150: Custom update URL parser fixes
• Issue #151: Support for detecting OpenSSL v1.1
• Issue #144: Clarify use of public vs private IP. It is possible
  to register private IP addresses in a public DNS
• Clarify --foreground option in man page
• Document minimum required versions of libite and libConfuse
• Portability fixes, replace __progname with a small function,
  replace %m with %s and strerror(errno).

New configuration file format, changed command line options, improved HTTPS support using GnuTLS and Open/LibreSSL. Inadyn now comes with certificate validation enabled by default.

Changes

• New configuration file format using libConfuse

• Radically simplified command line, a .conf file is now required

• Reorganized SSL code, split ssl.c into openssl.c and gnutls.c

• Strict HTTPS certificate validation is now default. To disable this
  use strict-ssl = false in the .conf file.

• Certificate validation uses trusted CA certificates from the system
  with fall-backs to certain known locations. To override this default
  handling a ca-trust-file = FILE setting in inadyn.conf can be used
  to provide the path to another CA cert bundle, in PEM format.

• Massive overhaul of inadyn(8) and inadyn.conf(5) man pages

• Support for reading address from interface, including IPv6 addresses

• Support for calling an external script to get the IP address

• Support for multiple users @ same provider, idea from Valery Frolov:

  provider [email protected]:1 {
      username    = ian
      password    = secret
      alias       = flemming.no-ip.com
  }
  
  provider [email protected]:2 {
      username    = james
      password    = bond
      alias       = spectre.no-ip.com
  }
  

• Support for ddnss.de and dynv6.com, contributed by Sven Hoefer

• Support for spdyn.de, on request from Frank Röhm

• Support for strato.com, contributed by Duncan Overbruck

• Support for disabling IP address validation: verify-address = false

• Refactored memory handling and privilige separation to simplify code

• Refactored logging and backgrounding to simplify code

• Removed old compatibility symlinks and other required GNU specific
  files, we now distribute and install README.md and ChangeLog.md

Fixes

• Fix issue #61: Add HTTPS certificate validation for OpenSSL/LibreSSL
• Fix issue #67: Use GnuTLS native API for HTTPS
• Fix DuckDNS: now requires 'www.' prefix in server URL. By Frank Aurich
• Fix issue #110: Poodle SSL_MODE_SEND_FALLBACK_SCSV not needed
• Fix issue #101: Remove support for custom pidfile
• Fix issue #102: Relocate cache files /var/run/inadyn to /var/cache/inadyn
• Fix issue #113: --drop-privs does not work
• Add actual permissions check to os_check_perms()
• Fix issue #121: Support for fully customizable update URL
• Fix issue #122: Only use HTTPS connection for DNS update, not checkip
• Fix issue #131: Use FreeDNS' own checkip server instead of DYN.com's
• Fix issue #134: Support wildcard cert with GnuTLS backend

This is the first release candidate of the new v2.0 Inadyn. The most prominent changes are the new configuration file format and changed command line options.

Changes

• New configuration file format using libConfuse

• Radically simplified command line, a .conf file is now required

• Support for reading address from interface, including IPv6 addresses

• Support for calling an external script to get the IP address.

• Support for multiple users @ same provider, idea from Valery Frolov:

  provider [email protected]:1 {
      username    = ian
      password    = secret
      alias       = flemming.no-ip.com
  }
  
  provider [email protected]:2 {
      username    = james
      password    = bond
      alias       = spectre.no-ip.com
  }
  

• Support for ddnss.de and dynv6.com, contributed by Sven Hoefer

• Support for spdyn.de, on request from Frank Röhm

• Reorganized SSL code, split ssl.c into openssl.c and gnutls.c

• Strict HTTPS certificate validation is now default. To disable this use strict-ssl = false in the .conf file.

• Massive overhaul of inadyn(8) and inadyn.conf(5) man pages

• Refactored memory handling and privilige separation to simplify code

• Refactored logging and backgrounding to simplify code

• Removed old compatibility symlinks and other required GNU specific
  files, we now distribute and install README.md and ChangeLog.md

Fixes

• Fix issue #61: Add HTTPS certificate validation for OpenSSL/LibreSSL
• Fix issue #67: Use GnuTLS native API for HTTPS
• Fix DuckDNS: now requires 'www.' prefix in server URL. By Frank Aurich
• Fix issue #110: Poodle SSL_MODE_SEND_FALLBACK_SCSV not needed
• Fix issue #101: Remove support for custom pidfile
• Fix issue #102: Relocate cache files /var/run/inadyn to /var/cache/inadyn
• Fix issue #113: --drop-privs does not work
• Add actual permissions check to os_check_perms()
• Fix issue #121: Support for fully customizable update URL
• Fix issue #122: Only use HTTPS connection for DNS update, not checkip

Minor bugfix release.

Changes

• Support for new API at https://tunnelbroker.net, fixes issue #83.
  Use [email protected] to use the DYN.com API to update
  the IPv4 address for your IPv6-in-IPv4 tunnel. Thanks goes to
  Horst Venzke @hvenzke for reporting this problem!
• The old API for the IPv6-in-IPv4 system [email protected] is now
  deprecated. Users should migrate to [email protected]
• Files generated by the GNU Configure & Build System is now no longer
  stored in GIT. Instead, users that rely on GIT must run the new
  ./autogen.sh script to generate the necessary files (configure).

Fixes

• Fix issue #100: regression from 1.99.13 pidfile is no longer
  created. Inadyn 1.x semantics incompatible with OpenBSD pidfile()
  that replaced local version in 1.99.14. Problem found by David
  Schury @daersc.
• Fix issue #107: If an IP address update fails, e.g. due to temporary
  connectivity, HTTP transmission problems, etc. then Inadyn now forces
  an update in the next IP check cycle. (This is the configurable
  period interval in inadyn.conf.) Reported by Oliver Graute
  @redbrain17 and audited by @BulldozerBSG, thanks!
• Fix issue #108: Update README with correct alias syntax for Namecheap,
  issue reported by @quazar0

Improved support for configuring custom DDNS providers and support for running in Windows, using Cygwin!

Changes

• New setting append-myip which, instead of appending your hostname
  alias, appends the current IP to the server GET update URL. See the
  README or the man pages for more details.
• Prevent Inadyn from bugging out if it cannot write a cache file when
  the -o, --once flag is given.
• Inadyn now defaults to a silent build, use make V=1 (like Linux) to get a
  verbose build. Useful for auto-builders etc.
• Migrate to libite for functions like pidfile(), strlcpy() etc.
• Add support for http://GiraDNS.com, thanks to Thorsten Mühlfelder, @thenktor!
• Add support for https://www.duiadns.net, thanks to Ionut Slaveanu, @svionut!
• Add Cygwin support for running Inadyn in Windows, thanks to Scott Mann, @sejmann!

Fixes

• Sanitized default logs by placing conditions for debug logs. Thanks
  to Frank Aurich, @1100101, for this work!
• Fix issue #82: build failure, no rule to build target CHANGELOG, a
  regression introduced in 1.99.13.
• Fix Duck DNS support, thanks to Ismani Nieuweboer, @YourDearestEigenvalue!

Changes

• Add support for https://domains.google.com DDNS, by Justin McManus
• Add support for https://www.ovh.com DDNS service, by Andres Gomez
• Add support for http://dtdns.com DDNS, by Denton Gentry
• Rename NEWS.md to CHANGELOG.md and update formatting in an attempt
  to align with http://keepachangelog.com -- this also means using ISO
  date format, finally!

Fixes

• Fix issue #78: Parsing checkip responses may fail, by Andy Padavan
• Fix issue #79: Don't treat inline '#' as comment if not preceeded by
  space, by Andy Padavan

Minor bugfix release.

• Fix cross compilation issues with OpenSSL (depends on libcrypto)
• Fix cross compilation issues with malloc/rpl_malloc (remove AC check)
• Add custom support for Namecheap.com, thanks to Terzeus S. Dominguez

• Fix building on FreeBSD by converting to use GNU Configure & Build system
• Fixes to add support for TLS 1.x with SNI, thanks to Thomas Waldmann
• Add support for https://nsupdate.info, thanks to Thomas Waldmann
• Add support for https://www.loopia.com DynDNS service extension
• Add support for https://duckdns.org, thanks to Andy Padavan
• Updated man pages, both inadyn(8) and inadyn.conf(5) with examples
• SSL mitigation fixes for POODLE