CoCCA SRS Software
From CoCCA Registry Services (NZ) Limited
CoCCA Software Installer
Installer (NEW), December 08, 2016 | Requires 64 bit OS ( RH/Centos/Ubuntu ) A new Stack with Resin Resin-4.0.49 "last update", java version "1.8.0_111", PostgreSQL 9.6.1 "last update"
File:Cocca-8-linux-x64-installer.run | MD5 47b9b44f93ae66c413bad88e08b8486b
Nightly Builds 2016
File:Nightly-20161230.war | MD5 | 98d9ab44977ee49ad355368f8d743cc8
- - QuickPay gateway improvements.
File:Nightly-20161229.war | MD5 | 7c3d0ac709d017fe2cb4d06723ce38d4
- - 2FA improvements.
- - QuickPay gateway improvements.
File:Nightly-20161227.war | MD5 | 92fb665b40215cc8f2defcd3cc628370
- - Ability to force users to have a 2FA.
File:Nightly-20161214.war | MD5 | 489dcf808aaea17a8b9d167f256fe3c5
- - 2FA improvements.
File:Nightly-20161208.war | MD5 | 6a1edc413b42c08921ba1af42904f9ad
- - Improved two factor authentication using Google Auth
File:Nightly-20161120.war | MD5 | 4c934f553dd867d5af7bfb8b4383cf50
- 371 - purchase domains when zone isn't signed bug fix.
File:Nightly-20161108.war | MD5 | 0066f6dea3ac9923d1ee12227e6070ea
- 303 - prevent adding DS records for unsigned zones.
- 369 - Added new recipients to the .NG WebPay email.
File:Nightly-20161106.war | MD5 | 9cba637a9ac58aa97cf41fb6550a0291
- 357 - two factor authentication using Google Authenticator.
- 352 - Rusnames Accounting Report improvements.
- 358 - DS records for suspended names bug fix.
- 366 - Export CSV bug fix.
- 365 - Added Algorithm 13 - ecdsa-256 with sha256 on p-256 curve - to DNSSEC.
- 368 - EPP Config Page bug fix.
File:Nightly-20161026.war | MD5 | 16f6cb6e015b16ed9068b8dd6e9dd7f7
- performance improved.
File:Nightly-20160915.war | MD5 | 7421e1829236b12923f00d927953fdc5
- .GL QuickPay payments Gateway.
File:Nightly-20160907.war | MD5 | 4197b01c78f2424dffe1f7d131597262
- Rusnames accounting report
- Small bugfix for out of zone domains for Fee EPP Checks
File:Nightly-20160902.war | MD5 | 1c14cd86776169b850307710d45c9a1d
- NG WebPAY - Email on successful payment
File:Nightly-20160830.war | MD5 | 460e0a28cc0312d87c5a89ce2a2c0830
- NG WebPAY code - Added a re-query ability for registrars, admins.
File:Nightly-20160823.war | MD5 | 477df8ccb619a562efb15a22a17e30ec
- Improvements to the WebPAY system for .NG
File:Nightly-20160815.war | MD5 | 079151a981896b5c92ee2b75cdc0e5c2
- New payment provider for .NG - WebPAY.
File:Nightly-20160803.war | MD5 | 2e3a2d102c8a25a60a0e6783d36b2198
- allowing customer service / clients to create sub accounts (resellers)
File:Nightly-20160727.war | MD5 | 3afd8ea1275de4f8a883c165e35ea0cf
- WHOIS reseller display fix
File:Nightly-20160718.war | MD5 | 1d7bf9825eb8e7c34ae7ac156cfaddff
- creating client bug fix
File:Nightly-20160627.war | MD5 | 95be40190d56023ea98a01b4a45f75c9
- SDF - Added Checking contact email addresses
File:Nightly-20160623.war | MD5 | 480b6908e507889d9a822732ef23487d
- SDF - Added IP address checks for name servers.
- SDF - Checking name servers to see if the domain names are known bad.
File:Nightly-20160608.war | MD5 | b39f0fcfe3318527c503e8cfd27b8073
- contact clean up
File:Nightly-20160530.war | MD5 | 79d4c85d48f426c9744d9c1c3856e38a
- Remove redundant/unused code, 1) auto-update module 2) browser SSL certificates
File:Nightly-20160526.war | MD5 | 3847cbecba87d931e028804141e4310b
- 335 - Creating client via UI
File:Nightly-20160525.war | MD5 | ef5c0890e2862703d15bf07d3240cc96
- 328 - French GUI bug fix
- 332 - Glue record creation bug fix
File:Nightly-20160518.war | MD5 | 22f45a361487dc67820f5bfe589ac049
- Browser fingerprinting - disable sending of emails
File:Nightly-20160510.war | MD5 | 6f0c867c083463dc2389ecc41952f789
- Security Patch, non critical
File:Nightly-20160503.war | MD5 | 75e4dfc4e9104c04ce274c40d21f4344
- Security Patch, non critical
File:Nightly-20160420.war | MD5 | 0b38409c03e483edd40e738baf4f0f02
- 326 - Fixed a transfer fee issue
File:Nightly-20160419.war | MD5 | 17fb9a82c10b1df94ead556cfd671a30
- 325 - Fixed layout of domain view page
File:Nightly-20160417.war | MD5 | d6a0b974d831ff8a3864f56fecba931b
- 320 - Added ability to change re-sellers via UI
File:Nightly-20160331.war | MD5 | 4bbd0467ab5a51613eaa06e970d71922
- 321 - Client / login security enhancement
- 322 - Improved error message when attempting to create an in-zone host for a domain owned by another registrar
File:Nightly-20160328.war | MD5 | acc22f332f994d6e05e32a8386dd08bf
- 320 - EPP Contact Extension for Reseller Mapping
File:Nightly-20160316.war | MD5 | 59d6bb08b19315196dfcf94d25551858
- 319 - .NG globalpay bug fix
File:Nightly-20160315.war | MD5 | 87f9c985f968c9465daf9daaa7ac1ff3
- 319 - .NG transaction summary page
File:Nightly-20160305.war | MD5 | 6fce66ecbfa8361bd28e095235f14117
- 317 - Registration of Premium bug fix
- 318 - Whois status bug fix
File:Nightly-20160229.war | MD5 | fe75fe0f74e8f69727fdbb8b8c7ad65c
- 316 - SRS and Whois performance improvements
File:Nightly-20160228.war | MD5 | caad02cf1d0127300b96a4fe554e6aff
- 314 - EPP IP restriction bug fix
- 259 - NG GlobalPay
File:Nightly-20160222.war | MD5 | 3d9607017e0b396ad9d98f6c2a2e6169
- 311 - Registration with multiple DNSSEC records
- 312 - Web Based WHOIS security
File:Nightly-20160126.war | MD5 | 35be6828680111966e47b700dd283a9f
- 294 - Added an insufficient funds check separately
- 295 - Added more validation to name server saves
- 299 - adding a limit for max transactions to see on the homepage
- 292 - Checking remove of DNSSEC records via EPP
File:Nightly-20160119.war | MD5 | d3cb58f92e06f8e71a3c9c62031c5c31
- 298 - ICANN extension for pending activation or confirmation statuses
- 299 - limiting the number of rows for reports
File:Nightly-20151116.war | MD5 | 5608b5594b21cbd41303601d24cab5b9
- 291 - Regexp filtering the domain search results
Nightly Builds 2015
File:Nightly-20151112.war | MD5 | fdb2cd71b9df16f516afaf98f12820c8
- 289 - preventing discounts from being applied when the zone settings are turned off
- 287 - Applying discounts for certain transactions - allowing admins to say what gets discounted
File:Nightly-20151109.war | MD5 | 705496edd7335e13056ec38dc9fafde6
- 285 - Added IANA number to CSV export
- 286 - Added a check for view zones so overview can do transaction export
File:Nightly-20151104.war | MD5 | a8a46c359e9c58420cf90a899851f1d8
- IDN message for attempts to register variants
File:Nightly-20151029.war | MD5 | c212afe0c2d51caa174602c49c226492
- .Bazaar IDN folding- ZWNJ and Variants groups
File:Nightly-20151015.war | MD5 | a1cc321aad7864c56139f690b17619b1
- 280 - Applying v0.8 of the fees XSD everywhere
- 278 - Fix for Portfolio Search Error ( Contact Org )
File:Nightly-20151011.war | MD5 | 8f928ac1497ce86fa79bf528e753382b
- 276 - Relax validation that prevented updates, transfers and renewals if the contact object was owned by a different registrar than the domain ( due to legacy data quality issues ).
- 284 - Allow admin to specify if volume discounts are calculated by TLD or by zone. ( .tld vs com.tld )
File:Nightly-20151009.war | MD5 | 9681330261d601e3ff636d354c35700d
- 188 - Advertising the Fees extension on greeting
- 274 - Clarify Claims Period Functions
File:Nightly-20151006.war | MD5 | 77fdcea5af46b87ac9fdd0f20ddf84aa
- 188 - More EPP extensions, RGP Restore
File:Nightly-20151005.war | MD5 | 038fce81c74e7e38e4a8a9ef2a6e0cc4
- 188 - EPP Extensions for Create and Renew ( premium names )
- 188 - Fixed NPE when registrars tried a fees request without specifying currency
File:Nightly-20150924.war | MD5 | a7b8fc899d5b8ca7a7eb59a051ae38b4
- 188 - Allowing multi currency premium name lists, fixing transfer and restore fees ( premium )
File:Nightly-20150922.war | MD5 | 44a25a8df70795514af8351c0c697f4c
- 261 FIX - Glue Record IP Address Validation in Edit ( trim issue in GUI edit ).
File:Nightly-20150917.war | MD5 | 6bfb9e183145fee65bfff9428721c38b
File:Nightly-20150911.war | MD5 | 7b3ef8a0278085bbda906ed75f07c2b8
File:Nightly-20150909.war | MD5 | 455cdd218e02ea704ae57a29fcaea3f5
File:Nightly-20150905.war | MD5 | cc0d74b6c2de3c1ffd99ac28bfe6881a
File:Nightly-20150901.war | MD5 | 9f4b2123bba058c1ba7a6dea90957d2e
File:Nightly-20150827.war | MD5 | e189ee8dd5cc8880ae460a2c99bfcdc5
File:Nightly-20150816.war | MD5 | d372711458653332aa81c409d8ff52ab
File:Nightly-20150721.war | MD5 | 7f3a3d81110a99722bff6e1d2b40efea
File:Nightly-20150712.war | MD5 | 1ae8d266bfad2336e1d056fe53e84f17
File:Nightly-20150621.war | MD5 | dbfa80ff2579fb05ea0f184f591d7d2a
File:Nightly-20150616.war | MD5 | dba0008a2915937ee2f506815ff405de
File:Nightly-20150609.war | MD5 | 0c9884f85e947ee8828c60a8ddc85ed5
File:Nightly-20150608.war | MD5 | 65c938cc1a294bbf4b88eec7ee0a630d
File:Nightly-20150604.war | MD5 | 2d3c555a349d6694149f4e940c62bf27
File:Nightly-20150528.war | MD5 | 87bf18aa44e8697a0959c48f565ce79c
File:Nightly-20150525.war | MD5 | a67e3656b46052843ba1b77bcfa65b06
File:Nightly-0517.war | MD5 | af317a8cbeacfcf0350105ff3f10fbfe
File:Nightly-0426.war | MD5 | 32851ff4f3614acecb9b2bb300cd28de
File:Nightly-0420.war | MD5 | 32851ff4f3614acecb9b2bb300cd28de
File:Nightly-0414.war | MD5 | 32851ff4f3614acecb9b2bb300cd28de
File:Nightly-0412.war | MD5 | 02f1a5c0da295d6c1b7cfdf37dd5c091
File:Nightly-0331.war | MD5 | 30fb5572f3842cc64b19a8e6daf84731
File:Nightly-0326.war | MD5 | f9c6e94d81f3f3e269fcc7fff409c866
File:Nightly-0324.war | MD5 | 627fe11387a4575f0934e500fe5b4dfd
File:Nightly-0322.war | MD5 | 74693ddd0733d45e71caea21bf2b38bcc
File:Nightly-0321.war | MD5 | 203c3d2ea5fc3c40208357fddce130d8
File:Nightly-0308.war | MD5 | 4f677a47ba35155224cad4f166a3e3f0
File:Nightly-0225.war | MD5 | 6b386abeea9df34c65e127e9d55b716c
Fixed | WHOIS settings issue #182 Fixed | Redemption settings issue #183 Fixed | VCS payment gateway integration #180 Improved | Auditing changes ( initial changes for v9 ) # 135
File:Nightly-0222.war | MD5 |961b5802ad7d89480c0d1af5f4817140
Improved added "to" value #162 Improved added "to" value #175 Improved added "to" value #173
File:Nightly-0217.war | MD5 |041680c7c0be9cd4e50266d8226f84ce
162 - 163 - 165 - 175 - 174 - notification in the case of registrant change timeout 161 - fast flux mitigation improvements 173 - notification for rolling sunrise 172 - improved password edit 166 - error searching for logins 176 - prevent manager roles from seeing create new login menu item
File:Nightly-0210.war | MD5 |ecb0716f43524236f59f881642e7a9fa
New | # 168 New | # 164
File:Nightly-0209.war | MD5 |de98d90950c09e408d3f466d4eed3fdd
New | Transfer Time Out for Registry #171 New | New Email for Registry Rejected Transfers #157 New | Realex PCI OTE platfrom integration #86
File:Nightly-0203.war | MD5 |193d8e9c75a78cee8801457cc4ca638b
Improved | New "System Manager" user permisosns #153
File:Nightly-0202.war | MD5 |734e8f62d6831b1d4c04f555c8212750
Improved | Transfer notice configuration #154 Improved | Edit of BCC fields per email Template as well as zone #155 Improved | Setings for change of registrant durring Sunrise #160 Improved | Automated Escrow Deposits #169 Improved | Backup Automaiton for IDN strings #170
File:Nightly-0118.war | MD5 |1af3911a6e0b657813c0abe291f0e13c
Improved | Notifications for Change of Registrant #140 Improved | Add variables "System Date" to emails #148 Improved | Allow configuration of the domain restored email #141 Improved | Admin approved email configuration #139
File:Nightly-0112b.war | MD5 |47725fb1bb1f874b0d37f2d693ba5b65
New | Hide Payment, Refunds and Adjustments filter from Registrars #151 #150 Improved | System Manager Role View Options # 117
File:Nightly-0112.war | MD5 |3a81d6ea2cff4e8a1177c650d9e0e21a
Improved | Add "System Date / Time" as a variable to the email templates #148
File:Nightly-0110.war | MD5 |eaebacbe5c0ae140f887f44c03ab8f10
Fix | Outbound Transfers via UI #149 Fix | Error deleting login that has IP restricitons # 134 Fix | Edit Registrar Password as as Zone or TLD admin # 137 New | System Manager Role # 117 New | Option to Hide balance and Adjustments from Registrar ledger #145 Improved | Hide "Month" option on registrar import if Min registration is 1 year #142 Improved | Display of deleted or transferred domains on Credt Statement # 146
Nightly Builds 2014
File:Nightly-1231.war | MD5 |54cc5efe3b264daa929e403a9c16b606
New | Opton to hide Pro-forma invoices from registrars #133 New | Localised French language file for users who identify themsleves as being in Morroco
File:Nightly-1227.war | MD5 |54cc5efe3b264daa929e403a9c16b606
Improved | Dispaly a "More..." menu if there are more then 5 pending delete requests. #132
File:Nightly-1224.war | MD5 |7d13222e99dc3c5c95cdc286ada476ff
Improved | Pre and Post Expiry email template configurations
File:Nightly-1223.war | MD5 |3ad477ec1cd2460cfb7e1c046c7b5944
New | Different Transfer Reject / Approve emails New | Disable "Month" "Days" Automated renewal options if policy prohibits these. New | Allow for Pre-Expiry reminder emails to be sent even if Auto-Renew is ON
File:Nightly-1222.war | MD5 |0b0f6d0666e8b7d47c35e1548928e99c
Improved | GUI dispaly of menus for a variety of new policy configurations #122-#126
File:Nightly-1218.war | MD5 |d2816178ca0fa64d5b32cfc42fcdb0a1
Improved | Hide GUI "Outbound Transfer" menu when zone policy requiers additional approvals New | Pre and Post Expiry email opitons / templates
File:Nightly-1217a.war | MD5 |cd20aececeb6da82575359520d278d03
Improved | Domain Contact Edit policy
File:Nightly-1217.war | MD5 |cf8c1cb0af4d5ddc1a0929cc97165c44
Improved | Registrar Locking Prohibitions ( Bulk )
File:Nightly-1216a.war | MD5 |a0e066d39315ef88633cb0b3c6834473
Improved | Realex PCI Gateway integration # 86
File:Nightly-1216.war | MD5 | dcdef9ac04ea307b8527052be9949d65
Improved | Domain > Contacts now displays options that relect the zone settings more accurately Improved | Token Add / Edit improvements Improved | goolge "no captcha. captcha" now defaults to basic google captcha if key file does not exist
File:Nightly-1214.war | MD5 |c84e602018e617d20af5256d8d9163a1
New | Option to prevent use of client locks by registrars ( domain and contact locks ) # 108
File:Nightly-1211.war | MD5 | a8744589fdec63a29d1569e851ae4605
Fix | Display of Domain Edit menu for Active domains #114 Improved | Document uploads for change of registrant request now retains origional name. New | Email Template for domain Delete Request ( when admin approval is required ) # 106 New | goolge "no captcha. captcha support on login page # 111
File:Nightly-1208.war | MD5 | 9d455bd8f7f14f26bbc3a22cfcf6b96d
Fix | Registrar view of deleted names #95 Improved | Scheduling Weekends and Holidays #98 New | Admin Edit of Transfer Time Out Dates # 110
File:Nightly-1206.war | MD5 | 0a6b32bf11745d84377c17edd264921c
New | Scheduling Weekends and Holidays #98
File:Nightly-1204.war | MD5 | bbf374e9316132375b269e9a07ff858b
Fixed | Registrar Bulk Renew ( # 103 ) Fixed | Registrar Sync Expiry "Hide" Option ( # 103 )
File:Nightly-1130.war | MD5 | c120f7e55c44fdf1efbb5c2ba989ee81
Fixed | Registrar Delete ( # 102 ) Fixed | Registar Bulk Restore Hidden ( # 78 )
File:Nightly-1126.war | MD5 | 9dcf137afc600efe5e72bf12464da382
Fixed | ( # 96 )
File:Nightly-1125.war | MD5 | 5f6f721ae357262f73b139305ba26c96
Fixed | ( # 94 ) Fixed | ( # 96 ) Improved | ( # 75 )
File:Nightly-1122.war | MD5 | d95908c4bee2b97eecb0beef7da08c20
Improved | Added purge to the manual zone automation ( # 91 ) Improved | More life-cycle options on the Registrar Automation ( # 88 ) Fixed | Edit of contacts without e164 fax number error ( # 90 )
File:Nightly-1119.war | MD5 | dfbd2527da54dd803fa41f0b5b64522c
File:Nightly-1117.war | MD5 | b9e72b591127fdd8a33204b6f98738ab
Improved | Option to treat "Restore" transactions as new registrations ( # 88 ) Improved | Option to set the frequency of delete reminders ( # 89 )
File:Nightly-1115.war | MD5 | b9e72b591127fdd8a33204b6f98738ab
Fix | Resolves registrar UI DS Record issue ( #84 ) Improved | Re-registratation options on Change of Registrant ( # 76 ) Improved | Bulk change of contacts - new options ( # 77 ) Improved | Bulk Edit of contacts e164 enhancements ( # 80 )
File:Nightly-1113.war | MD5 | 14e5faf8dacbc06e91ffd9f1860acc02
Fix | Resolves issue saving the new registrar "Automation" preferences
File:Nightly-1112.war | MD5 | :b865ffc12e429226c02f302dbb4468d8
New | Two additional registrar restore preferences ( depending on if the domain is expired or not ) New | Variable Redemption Settings New | Excluded "Build Time" TXT record from zone file
File:Nightly-1106.war | MD5 | 63f50000a01066b9b3723e2bff6cbd19
File:Nightly-1030.war | MD5 | ae5c39f5c46cfb25a7a721005f6f30d5
File:Nightly-1023.war | MD5 | 2eb5aea3bf9cc88154f7bfe5f5ddf609
File:Nightly-1008.war | MD5 | cca7bd99a23eacef1fdfbd3459d86cc9
File:Nightly-1002.war | MD5 | 479ae63ef61384e4546491eafad9c832
File:Nightly-0930.war | MD5 | 1e2408e93ca077c7b61e6c0160a84521
File:Nightly-0927.war | MD5 | 3da22b2d366a3c3098cd17bfb5476211
File:Nightly-0922.war | MD5 | 1fadc47291f16987f235444143e86ca9
File:Nightly-0921.war | MD5 | 84b2cbd0eed97c707a523659fb0d42e2
File:Nightly-0914.war | MD5 | d8182470e03c983ebfbc54deaf9a6749
File:Nightly-0910.war | MD5 | ce97135c88284a700b7b8326ae632002
File:Nightly-0909.war | MD5 | ea7fab4086d600301d3a07e4c618f833
File:Nightly-0906.war | MD5 | a4eb0402cf86da688dce91d8d921153a
File:Nightly-0831.war | MD5 | 7113dd44e7e8481349004ee5bbcf532b
File:Nightly-0817.war | MD5 | 309d13db94e52e01a65130528c9ee97a
File:Nightly-0727.war | MD5 | 522cb1d8d43bec27a1850186c846ae46
File:Nightly-0708.war | MD5 | 152644df80d636a729a0f5d0bcaf13e1
File:Nightly-0705.war | MD5 | 504b7084da42dad0ddb9e24212658e17
File:Nightly-0702.war | MD5 | 7ac816f71e557857d9bc5bdbcb1916c5
File:Nightly-0626.war | MD5 | 26627c55a7088db2597e49a7f41bce50
File:20140623.war ( 35MB ) | MD5 | ede20581e5e44a85c5bd897b81eb5abf
Improved report formatting and data escrow / offsite backup Improvements to WHOIS command line formatting (flexibility and nTLD compatibility) Nightly Builds
File:Nightly-0618.war | MD5 | 765f745915abdf8afbfeff533bdf1851
File:Nightly-0604.war | MD5 | 5e3e619e4656392f0c7e1fb6607b2200
File:Nightly-0529.war | MD5 | 60ef09f0f19437ebe59185ae26343790
File:Nightly-0528.war | MD5 | 3f97b7dc7e7ef806a9cffe513ab1abd3
Resolves issue that caused EPP transfers to fail if the AuthCode contains something other than A-z,0-9. Resolves issue with configuration of encrypted offsite backups
20140126.war MD5 6ddb3fd08a6992ab3da1569266181539
patch for 20140122.war that resolves the "null" error when you fail to enter a parameter in the admin web-based whois, also a whois query of a prohibited domain will now return "Domain Status: Prohibited String - Object Cannot Be Registered" not "Prohibited - No Object Found" as was the case in the previous release.
20140122.war MD5 a45d0dae17c9b89902a581d86ce789e
patch for 20140119 that includes two 2 DTD docs required for offline epp functionality
20140119.war MD5 a45d0dae17c9b89902a581d86ce789e
improved EPP compatibility if a domain is on the prohibited list the WHOIS status will display "Prohibited - No Object Found" not just "No Object Found" On the authinfo site config page there's a new setting - "Always Change?" - if this is true, the password will always be changed. Otherwise, the password will be reset only if the registrar has secure auth info PWs set. If they have plain text PWs and this setting is on, then the password is just sent to them, not changed.if a registrar has "auto-renew" on then the system will not send expiry reminder emails to the Registrar / Registrant ( if configured )a cross-script security fix quick-pay gateway logging fixes
20140101.war MD5 7e080bf5c8aa072aab6bc36f9ca7e3f8
removes the option to exclude several audit tables when making backups "quick" partial backups. If you want to take occasional "snapshots" of the DB without the full audit history then we suggest using the escrow feature.
Nightly Builds 2013
fix for "Config > Login Page" jsp error fix for DNSSEC key length validation fix for cross - script vulnerability
allowing local encryption/signing and save of backups and escrow (it's now possible to schedule a new escrow/backup and have it encrypted/signed even it won't be shipped offsite) the signing keys for each zone are generated the first time the signing is scheduled, then they're saved in a PGPKeyRingCollection keystore (/opt/cocca-8/keys/keyringcoll_escrow.pskr). The generated public key can be downloaded from the escrow/backup page. escrow file names fixed to comply with the latest RFC the full escrow also makes a report file that is bundled with the file when shipped offsite backups sorting by date / time don't allow backups / escrow to be downloaded from the UI
The signing keys generation is implemented with the BouncyCastle security provider, that's the reason why this line has to be inserted in the java.security file (/opt/cocca-8/java/jre/lib/security/java.security): security.provider.2=org.bouncycastle.jce.provider.BouncyCastleProvider
Searchable WHOIS enhancements Login Page "WHOIS" removed Public monitoring mini-Site removed Improved DS record validation
several SQL injection fixes fix for phone validation preventing save of Client > Edit page. SQL update to sync the EPP API ON / OFF toggle.
fix for EPP API access toggle ON /OFF fix for zone reminder email configuration and registrar delivery over-ride
Fixes a few issues introduced by accidental regression of a few jsp files in 20130910.war
escrow Scheduling improvements new Library for offsite FTP to resolve failure to disconnect issue.
Fix for "Zone > Details" menu error introduced in 20130910.war
GUI support for Type 7 DNSSEC records RSA/SHA/NSEC/SHA ( supported already via EPP )
minor security fix on the Zone ( Admin ) pages
improved validation for in-zone hosts improved escrow scheduling
improved WHOIS log format ( removed some "fluff" ) e164 phone number escrow enhancements improved escrow schedule options ( new custom option )
improved CSV output filtering for several query improved functionality in captcha setup
support for new ICANN registry escrow format - http://www.ietf.org/id/draft-arias-noguchi-dnrd-objects-mapping-03.txt improved EPP password re-set functionality
20130719.war --- new "simple captcha" implementation (captcha for Latin, Arabic and Chinese alphabet) --- new "reload" captcha around the place. 20130716.war
security fixes XSS ( remaining known issues ).
fix for password enable function ( no longer requires the "previous" password when enabling for the first time.
resolves error in cross - script vulnerability fix that prevented registration of domains with "-" via the UI resolves issue re-setting the EPP password and changing the AuthCode encryption at the same time improved error handling of browser errors - limits the stack trace visibility to sys-admins only
security enhancements ( cross-site scripting issue )
improved "fine grain" control of domain Status's in the GUI security enhancements ( several SQL injection fixes )
fix for several SQL injection vulnerabilities #1.18-1.1.9 and cross-site scripting (reflected) #2.1 - 2.10
confirmation email fix ( offsite escrow ) limit the file types that can be uploaded as documents.
some bug fixing on the Escrow page the possibility for TLD admin to append only the folder name of Escrow deposit to the sys_admin folder. Validation on escrow offsite notify email Fixing for SQL Injection vulnerabilities from 1.1 to 1.17 (vulnerabilities document)
New Registrar "Automation" preference - what to do when a name that is "pending delete" is restored. Option A: Restore then Renew manually ( 2 EPP commands ). Option B: Restore and Renew in one step ( one EPP command ). This is set on the Registrar's Automation preference page.
fix for password re-set / re-authenticate function on Login > Details page improved house-keeping database maintenance > "Clean Up" now does some back-end clean up on a few tables that tend to get bloated. It also now has the option to do a gentle "vacuum" or "vacuum full". "Vacuum full" will impact performance and is best done during an outage.
fix for "table column error" on Maintenance menu. fix for login / contact password validation
includes some SQL missing from 20130610.war improved admin email validation for LOGIN an CLIENT user types
login related improvements improvements to offsite escrow cross scripting vulnerabilities fix backup configuration fixes
txt file export for transfer query
fix for GUI transfer issue.
improvement - in order to change passwords users must enter the existing password first resolves "SSL cookie without secure flag set" issue resolves "cookie without HttpOnly flag set" issue resolves "cacheable HTTPS response" issue
improvements to transfer report in the GUI only, CSV to follow in next release. bug fix for the missing "Z" on one digit EPP time improvements to CSV import / zone migration to deal with glue records more elegantly.
security fixes on a few pages ( sql injection vulnerability found during third party security audit ) prevent auto-fill on password setting pages makes default "EPP time" three decimals (not one), note : you can change the preferences to round to one decimal if you wish.
changes to EPP time, now configurable on the EPP setup page (1 - 3 decimals). for example 2013-05-20T03:05:47.447Z >>> can be changed to >>> 2013-05-20T03:05:47.0Z.
improved offsite backup feature ( encrypt and sign backup then ship it offsite by ssh or ftp )
improvements to the domain AuthCode reset functions. enforces use of CSRF tokens. enforces session IP check in cookies.