commit 2edd0f248abc1e689128d6a9d1360f3367a6a151 parent f215cc252d6d49e753a82a41f459f92ff075136a Author: ThomasV <thomasv@gitorious> Date: Sat, 25 Jul 2015 11:53:43 +0200 release notes Diffstat:
M | RELEASE-NOTES | | | 9 | +++++---- |
1 file changed, 5 insertions(+), 4 deletions(-)
diff --git a/RELEASE-NOTES b/RELEASE-NOTES @@ -1,8 +1,9 @@ # Release 2.4 - * The Openalias/DNSSEC plugin was merged into the main electrum - code. The DNSSEC verification procedure was rewritten. The previous - validation method, which was part of the OpenAlias plugin, is - vulnerable and should not be trusted (Electrum 2.0 to 2.3). + * The Openalias/DNSSEC plugin was merged into the main electrum code. + The validation of aliases uses DNSSEC and requires pyCrypto. + * The DNSSEC validation code was rewritten. The previous validation + method, which was part of the OpenAlias plugin, is vulnerable and + should not be trusted (Electrum 2.0 to 2.3). * BIP70 payment requests can be signed using Bitcoin keys stored in DNS (OpenAlias). The identity of the requestor is verified using DNSSEC.