All notable changes to the project are documented in this file.
v2.2 - 2017-01-XX
- Use HTTP by default for DYN.com checkip server, used by many DDNS
providers that do not have their own. This change is far more user
friendly since you no longer have to explicitly set
checkip-ssl = false
for the most common use-case. - Some DDNS providers have multiple IP addresses registered for the same service, as of this release Inadyn immediately tries to connect to the next listed addresses on connection problems.
- Issue #153: Support for custom HTTP User Agent. Useful with providers that require using a specific brower. Set to, e.g. "Mozilla/4.0", or rely on the default "inadyn/VERSION" user agent.
- Support for the
%%
format specifier in custom server URL's, as mentioned in issue #152. - Add support for a
.conf
syntax checker:inadyn --check-config
- Add support for logging to
stderr
when running in foreground or without syslog enabled - Remove libite dependency by importing all its used files into inadyn. This should ease adoption by distributions and end users. All code is under free licenses: BSD, ISC.
- Issue #152: Do not attempt to create PID file in oneshot mode (
-1
) - Issue #152: Must URL encode custom server URL's
v2.1 - 2016-12-04
- Use HTTPS instead of HTTP by default
- Support for disabling HTTPS for
checkip-server
, per provider. Idea from Valery Frolov - Add
-I,--ident=NAME
option for syslog+pidfile name - Deprecate
--pidfile=NAME
option in favor of--ident=NAME
- Issue #150: Custom update URL parser fixes
- Issue #151: Support for detecting OpenSSL v1.1
- Issue #144: Clarify use of public vs private IP. It is possible to register private IP addresses in a public DNS
- Clarify
--foreground
option in man page - Document minimum required versions of libite and libConfuse
- Portability fixes, replace
__progname
with a small function, replace%m
with%s
andstrerror(errno)
.
v2.0 - 2016-09-12
New configuration file format, changed command line options, improved HTTPS support using GnuTLS and Open/LibreSSL. Inadyn now comes with certificate validation enabled by default.
-
New configuration file format using libConfuse
-
Radically simplified command line, a .conf file is now required
-
Reorganized SSL code, split
ssl.c
intoopenssl.c
andgnutls.c
-
Strict HTTPS certificate validation is now default. To disable this use
strict-ssl = false
in the .conf file. -
Certificate validation uses trusted CA certificates from the system with fall-backs to certain known locations. To override this default handling a
ca-trust-file = FILE
setting ininadyn.conf
can be used to provide the path to another CA cert bundle, in PEM format. -
Massive overhaul of
inadyn(8)
andinadyn.conf(5)
man pages -
Support for reading address from interface, including IPv6 addresses
-
Support for calling an external script to get the IP address
-
Support for multiple users @ same provider, idea from Valery Frolov:
provider [email protected]:1 { username = ian password = secret alias = flemming.no-ip.com } provider [email protected]:2 { username = james password = bond alias = spectre.no-ip.com }
-
Support for ddnss.de and dynv6.com, contributed by Sven Hoefer
-
Support for spdyn.de, on request from Frank Röhm
-
Support for strato.com, contributed by Duncan Overbruck
-
Support for disabling IP address validation:
verify-address = false
-
Refactored memory handling and privilige separation to simplify code
-
Refactored logging and backgrounding to simplify code
-
Removed old compatibility symlinks and other required GNU specific files, we now distribute and install README.md and ChangeLog.md
- Fix issue #61: Add HTTPS certificate validation for OpenSSL/LibreSSL
- Fix issue #67: Use GnuTLS native API for HTTPS
- Fix DuckDNS: now requires 'www.' prefix in server URL. By Frank Aurich
- Fix issue #110: Poodle
SSL_MODE_SEND_FALLBACK_SCSV
not needed - Fix issue #101: Remove support for custom pidfile
- Fix issue #102: Relocate cache files
/var/run/inadyn
to/var/cache/inadyn
- Fix issue #113:
--drop-privs
does not work - Add actual permissions check to
os_check_perms()
- Fix issue #121: Support for fully customizable update URL
- Fix issue #122: Only use HTTPS connection for DNS update, not checkip
- Fix issue #131: Use FreeDNS' own checkip server instead of DYN.com's
- Fix issue #134: Support wildcard cert with GnuTLS backend
1.99.15 - 2015-09-09
Minor bugfix release.
- Support for new API at https://tunnelbroker.net, fixes issue #83.
Use
[email protected]
to use the DYN.com API to update the IPv4 address for your IPv6-in-IPv4 tunnel. Thanks goes to Horst Venzke @hvenzke for reporting this problem! - The old API for the IPv6-in-IPv4 system
[email protected]
is now deprecated. Users should migrate to[email protected]
- Files generated by the GNU Configure & Build System is now no longer
stored in GIT. Instead, users that rely on GIT must run the new
./autogen.sh
script to generate the necessary files (configure
).
- Fix issue #100: regression from 1.99.13 pidfile is no longer
created. Inadyn 1.x semantics incompatible with OpenBSD
pidfile()
that replaced local version in 1.99.14. Problem found by David Schury @daersc. - Fix issue #107: If an IP address update fails, e.g. due to temporary
connectivity, HTTP transmission problems, etc. then Inadyn now forces
an update in the next IP check cycle. (This is the configurable
period
interval ininadyn.conf
.) Reported by Oliver Graute @redbrain17 and audited by @BulldozerBSG, thanks! - Fix issue #108: Update README with correct alias syntax for Namecheap, issue reported by @quazar0
1.99.14 - 2015-07-14
Improved support for configuring custom DDNS providers and support for running in Windows, using Cygwin!
- New setting
append-myip
which, instead of appending your hostname alias, appends the current IP to the server GET update URL. See README or the man pages for more details. - Prevent Inadyn from bugging out if it cannot write a cache file when
the
-o, --once
flag is given. - Inadyn now defaults to a silent build, use V=1 (like Linux) to get a verbose build. Useful for auto-builders etc.
- Migrate to libite for functions like
pidfile()
,strlcpy()
etc. - Add support for http://GiraDNS.com, thanks to Thorsten Mühlfelder!
- Add support for https://www.duiadns.net, thanks to Ionut Slaveanu!
- Add Cygwin support for running Inadyn in Windows, thanks to Scott Mann!
- Issue #89: Fix Duck DNS support, thanks to Ismani Nieuweboer!
- Issue #82: No rule to build target CHANGELOG, regression introduced in 1.99.13.
- Issue #84: Sanitized default logs by placing conditions for debug logs. Big thanks to Frank Aurich for this work!
1.99.13 - 2015-02-08
- Add support for https://domains.google.com DDNS, by Justin McManus
- Add support for https://www.ovh.com DDNS service, by Andres Gomez
- Add support for http://dtdns.com DDNS, by Denton Gentry
- Rename
NEWS.md
toCHANGELOG.md
and update formatting in an attempt to align with http://keepachangelog.com -- this also means using ISO date format, finally!
- Fix issue #78: Parsing checkip responses may fail, by Andy Padavan
- Fix issue #79: Don't treat inline '#' as comment if not preceeded by space, by Andy Padavan
1.99.12 - 2014-10-20
- Add custom support for http://Namecheap.com, by Terzeus S. Dominguez
- Fix cross compilation issues with OpenSSL (depends on libcrypto)
- Fix cross compilation issues with
malloc
vs.rpl_malloc
(removed autoconf check completely)
1.99.11 - 2014-10-15
- Add support for https://nsupdate.info, thanks to Thomas Waldmann
- Add support for https://www.loopia.com DynDNS service extension
- Add support for https://duckdns.org, thanks to Andy Padavan
- Updated man pages, both
inadyn(8)
andinadyn.conf(5)
with examples
- Fix building on FreeBSD by converting to use GNU Configure & Build system
- Fixes to add support for TLS 1.x with SNI, thanks to Thomas Waldmann
- SSL mitigation fixes for POODLE
1.99.10 - 2014-09-13
- Refactor string functions
strcat()
andstrcpy()
to use secure OpenBSD replacementsstrlcat()
andstrlcpy()
instead.
- Fix issue #57:
snprintf()
causes loss of = from password string - Fix issue #58: Add support for GnuTLS as the default SSL library
- Fix bugs found by Coverity Scan
- Fix memory leaks found by GLIBC (!) on PowerPC
- Fix include order problem with
error.h
1.99.9 - 2014-05-21
- Support for http://www.zerigo.com DDNS provider
- Support for http://www.dhis.org DDNS provider
- Fix memory leak in new HTTPS support, found by Valgrind
- Other misc. Valgrind and Cppcheck fixes
1.99.8 - 2014-05-20
- Support for HTTPS to secure login credentials at DNS update, issue #36
- Support for persistent cache files with new
--cache-dir PATH
- Support for http://twoDNS.de in generic plugin, see README for details
- Man page updates
1.99.7 - 2014-05-14
- Support for multiple cache files, one per DDNS provider, issue #35
- Refactor DDNS providers as plugins, issue #30
1.99.6 - 2013-12-25
- Update documentation for custom servers and add missing compatibility entry for custom servers.
- Fix nasty socket leak.
1.99.5 - 2013-11-27
- Support for
--fake-address
on newSIGUSR1
(forced update) - Support for
SIGUSR2
(check now), - Support for
--startup-delay SEC
, for embedded systems - Man page updates
- Many minor bug fixes
1.99.4 - 2013-08-08
This release fixes a base64 password encoding regression in 1.99.3
1.99.3 - 2013-07-15 [YANKED]
This release adds the ability to specify the cache file and the ability
to check the IP of the interface (UNIX only). If no interface is
specified, no external IP check is performed. The old --iface
option
has been renamed --bind
. changeip.com support has been added. Minor
bugfixes and code optimizations have been made.
- Add ability to specify cache file
- Add ability to check IP of interface (UNIX only). If interface is
specified, no external IP check performed Old
--iface
option renamed to--bind
- Specify IP address in freedns.afraid.org update request (only autodetect was used)
- Add changeip.com support
- Minor bugfixes and code optimization
- Get HTTP status description
- Fix inability to change update period (broken in 1.99.0)
- Fix debug output description
1.99.1 - 2012-09-01
- Make HTTP status code check server-specific
- Update maintainer e-mail address
1.99.0 - 2012-08-17
- Merge wl500g patches from http://code.google.com/p/wl500g:
120-heipv6tb.patch
adds support for tunnelbroker121-hedyndns.patch
adds support for HE dyndns210-wildcard.patch
makes wildcard option account specific
- For ddns services that have their own checkip service, use it instead of dyndns.org checkip service
- Add ability to handle non-fatal temporary errors ("update too often", system error etc.)
- Warn if initial DNS request failed
- Add dnsexit.com support
- Modify http client to parse response for http status code and response body
- Remove DynDNS ignored and deprecated parameters (wildcard, mx, backmx, system). Wildcard kept for easydns.com
- Report detected IP to sitelutions and dynsip servers (only autodetect was used)
- Update TZO support
- Check HTTP status code before validating response
- Remake zoneedit response validation
- Little code cleanup
- Fix malformed HTTP request
1.98.1 - 2011-07-18
- Preserve time since last update (forced update counter) and num
interations from being reset by
SIGHUP
restart command - Extend
--drop-privs
to support hyphens - Cleanup of inadyn log messages, reformat & clarification
- Bug fix segfault at initial DNS lookup
- Bug fix
--drop-privs
uid/gid was swapped and a possible buffer overflow - Typo fixes and polish to man pages inadyn(8) and inadyn.conf(5)
1.98.0 - 2011-02-28
- New config file, command line, syntax (still backwards compatible!)
- New option
--drop-privs USER[:GROUP]
to support privilege separation - Drop privileges before creating any files
- Documentation updates
1.97.4 - 2010-11-02
- Support for dynsip.org by milkfish, from DD-WRT
- Add support for sitelutions.com, from inadyn-mt (untested)
- Clear DNS cache before calling
getaddrinfo()
, fixes GitHub issue #3
1.97.3 - 2010-11-02
- Merge wl500g patches from http://code.google.com/p/wl500g:
101-http-request.patch
. This cleans up the DDNS server defintions and callbacks, evidently originating from ideas implemented by DD-WRT.102-zoneedit.patch
. This fixes issues in what appears to be both request and response formats in ZoneEdit DDNS. Originating from DD-WRT.103-tzo.patch
. This patch adds support for tzo.com DDNS serivices.110-dnsomatic.patch
. This patch adds support for DNS-O-Matic http://dnsomatic.com/, an OpenDNS service which can act as a "meta" update to several other DDNS service providers.120-heipv6tb.patch
. This patch adds support for Hurricane Electric's http://tunnelbroker.net/ DDNS services https://dns.he.net/.
- When starting: always use cache file, if it exists, or seed with DNS lookup
- Fix Debian bug #575549: freedns.afraid.org example in
inadyn(8)
is incorrect.
1.97.2 - 2010-10-30
- Replace
gethostbyname()
withgetaddrinfo()
and improve logging atconnect()
- Fix missing man pages from install/uninstall targets
- Fix GitHub issue #2:
setsocktopt()
takes pointer tostruct timeval
, notint
as argument
1.97.1 - 2010-10-19
- Add support for properly restarting inadyn on
SIGHUP
- Remove
INADYN:
prefix inMODULE_TAG
entirely - messes up syslog output
1.97.0 - 2010-10-18
- Apply patches by Neufbox4 from http://dev.efixo.net:
100-inadyn-1.96.2.patch
, cache file support100-inadyn-1.96.2.patch
, bind interface support200-inadyn-1.96.2-64bits-fix.patch
300-inadyn-1.96.2-pidfile-and-improve.patch
- New README, COPYING and LICENSE file, remove readme.html
- Refactor and cleanup Makefile (renamed from makefile)
- Add support for
SIGTERM
signal - Relocate include files to include directory
- Apply patch for multiple accounts from Christian Eyrich
- Remove unused
uint typedef
causing trouble on ARM GCC 4.4.x - Fix missing
strdup()
of input config file and free any preexisting - Make sure
TYPE_TCP
enum relly is 0 on all compilers - Improve error messages using
strerror()
and use-1
as stale socket, not0
- Fix nasty socket leak
- Merge with inadyn-advanced, http://sf.net/projects/inadyn-advanced:
- Add support for 3322.org and easydns.org
- Add support for domain wildcarding,
--wildcard
option NOTE: Domain wildcarding is now disabled by default - Add support for running an external command hook on IP update, new
--exec
option - Add support for datetime in debug messages
- Refactor
DBG_PRINTF((..))
-->logit(..)
- Update man page
inadyn(8)
with info on--bind_interface
,--wildcard
,--exec
options and support for easydns.org and 3322.org services - Misc fixes and cleanups
- If the Dynamic DNS server responds with an error Inadyn will abort. This will prevent further retries with wrong dyndns credentials.
- Default port number included in the request, to support the requests via Proxy, to ports different than 80.
- Simplified main inadyn update loop function. (there was no bug there)
- zoneedit.com supported.
- no-ip.com supported.
- support for generic DNS services that support HTTP updates
- Immediate exit in case of --iterations=1 (not after a sleep period)
- Add missing option for specifying the path in the DNS server
- UNIX signals supported - inadyn will stop gracefully in case of ALRM, HUP, INT, ...
- New dynamic DNS service supported - www.zoneedit.com - Not tested!
- Makefile adjusted for Solaris - compilable under Solaris.
- Support for generic DYNDNS service that supports update via HTTP with basic authentication not yet fully complete. Not known where might be applicable.
- New option
--change_persona uid:gid
- inadyn can switch the user after launch. Typical feature for daemons - Addition to
--ip_server_name
feature, now it has another parameter: the URL to read from the given server name - Reduced some error messages
- Manual pages updated. (thanks to Shaul Karl)
- Typo fixed (
--ip_server_name
option)
- Updated UNIX man pages for inadyn. Even a page for
inadyn.conf
, Thanks to Shaul Karl! - Inadyn doesn't print anything (e.g. ver. number) anymore when goes to background
- New config file parser. Accepts ESCAPE character:
\
- Corrected check of the return code from
socket()
call
- Config file related enhancements:
- Use default location for config file, when no arguments for inadyn
- More *NIX like format for the config file. Thanks to Jerome Benoit
- When 'iterations' option is specified as being '1', inadyn exits immediately after first update, not after the sleep period as before
- No new features, just a better integration with Linux. Reviewed usage of syslog and fork to background in daemon mode, thanks to Shaul Karl.
- Optional output to syslog for Linux, should work for all *nix systems
- Run in background for Linux, should work for all *nix systems
- Minor compile warnings removed
- New
--iterations
cmd line option. Now one can run inadyn with only one iteration. Untested. It was a debug option now made accessible via cmd line. It should work.
- Custom DNS from dyndns option was not accepted by the cmd line parser. "Copy-paste" error :-(
- On users' request the inadyn can read the options from file.
- Support for more aliases for DNS service offered by freedns.afraid.org
- Support for dynamic DNS service offered by freedns.afraid.org
- Support for http proxy
- GPL copyright notice added.
- Support for custom DNS and static DNS services offered by dyndns.org
- Support for forced IP update, so the account will not expire even though the IP never changes
- Multiple aliases are AGAIN supported
- In case of error in IP update the OS signal handler is not installed again.
First port to *NIX - Linux running OK as console app.
- Run as a background daemon in UNIX
- Better interface
- Various bug fixes.
Port to pSOS
Note: no DNS support under pSOS -- hard coded IP addresses of the server.
First stable version.
- DYNDNS client
- free
- works fine behind a NAT router
- runs fine as a service
- has a nice log file
- port to *NIX
- port to pSOS