CoCCA SRS Software last Patches and CoCCA installer
From CoCCA Registry Services (NZ) Limited
Contents |
CoCCA Software Installer
Installer (NEW), Jun 06, 2015 | Requires 64 bit OS ( RH/Centos/Ubuntu ) A new Stack with Resin 4.0.42, Java 1.8, PostgreSQL 9.4.1
File:Cocca-x64-installer.run | MD5 62fd91cbac11ae42ad845af171f8750f
Nightly Builds
Nightly Builds 2015
File:Nightly-0414.war | MD5 | 32851ff4f3614acecb9b2bb300cd28de
File:Nightly-0412.war | MD5 | 02f1a5c0da295d6c1b7cfdf37dd5c091
File:Nightly-0331.war | MD5 | 30fb5572f3842cc64b19a8e6daf84731
File:Nightly-0326.war | MD5 | f9c6e94d81f3f3e269fcc7fff409c866
File:Nightly-0324.war | MD5 | 627fe11387a4575f0934e500fe5b4dfd
File:Nightly-0322.war | MD5 | 74693ddd0733d45e71caea21bf2b38bcc
File:Nightly-0321.war | MD5 | 203c3d2ea5fc3c40208357fddce130d8
File:Nightly-0308.war | MD5 | 4f677a47ba35155224cad4f166a3e3f0
File:Nightly-0225.war | MD5 | 6b386abeea9df34c65e127e9d55b716c
Fixed | WHOIS settings issue #182
Fixed | Redemption settings issue #183
Fixed | VCS payment gateway integration #180
Improved | Auditing changes ( initial changes for v9 ) # 135
File:Nightly-0222.war | MD5 |961b5802ad7d89480c0d1af5f4817140
Improved added "to" value #162
Improved added "to" value #175
Improved added "to" value #173
File:Nightly-0217.war | MD5 |041680c7c0be9cd4e50266d8226f84ce
162 -
163 -
165 -
175 -
174 - notification in the case of registrant change timeout
161 - fast flux mitigation improvements
173 - notification for rolling sunrise
172 - improved password edit
166 - error searching for logins
176 - prevent manager roles from seeing create new login menu item
File:Nightly-0210.war | MD5 |ecb0716f43524236f59f881642e7a9fa
New | # 168
New | # 164
File:Nightly-0209.war | MD5 |de98d90950c09e408d3f466d4eed3fdd
New | Transfer Time Out for Registry #171
New | New Email for Registry Rejected Transfers #157
New | Realex PCI OTE platfrom integration #86
File:Nightly-0203.war | MD5 |193d8e9c75a78cee8801457cc4ca638b
Improved | New "System Manager" user permisosns #153
File:Nightly-0202.war | MD5 |734e8f62d6831b1d4c04f555c8212750
Improved | Transfer notice configuration #154 Improved | Edit of BCC fields per email Template as well as zone #155 Improved | Setings for change of registrant durring Sunrise #160 Improved | Automated Escrow Deposits #169 Improved | Backup Automaiton for IDN strings #170
File:Nightly-0118.war | MD5 |1af3911a6e0b657813c0abe291f0e13c
Improved | Notifications for Change of Registrant #140 Improved | Add variables "System Date" to emails #148 Improved | Allow configuration of the domain restored email #141 Improved | Admin approved email configuration #139
File:Nightly-0112b.war | MD5 |47725fb1bb1f874b0d37f2d693ba5b65
New | Hide Payment, Refunds and Adjustments filter from Registrars #151 #150 Improved | System Manager Role View Options # 117
File:Nightly-0112.war | MD5 |3a81d6ea2cff4e8a1177c650d9e0e21a
Improved | Add "System Date / Time" as a variable to the email templates #148
File:Nightly-0110.war | MD5 |eaebacbe5c0ae140f887f44c03ab8f10
Fix | Outbound Transfers via UI #149 Fix | Error deleting login that has IP restricitons # 134 Fix | Edit Registrar Password as as Zone or TLD admin # 137 New | System Manager Role # 117 New | Option to Hide balance and Adjustments from Registrar ledger #145 Improved | Hide "Month" option on registrar import if Min registration is 1 year #142 Improved | Display of deleted or transferred domains on Credt Statement # 146
Nightly Builds 2014
File:Nightly-1231.war | MD5 |54cc5efe3b264daa929e403a9c16b606
New | Opton to hide Pro-forma invoices from registrars #133 New | Localised French language file for users who identify themsleves as being in Morroco
File:Nightly-1227.war | MD5 |54cc5efe3b264daa929e403a9c16b606
Improved | Dispaly a "More..." menu if there are more then 5 pending delete requests. #132
File:Nightly-1224.war | MD5 |7d13222e99dc3c5c95cdc286ada476ff
Improved | Pre and Post Expiry email template configurations
File:Nightly-1223.war | MD5 |3ad477ec1cd2460cfb7e1c046c7b5944
New | Different Transfer Reject / Approve emails
New | Disable "Month" "Days" Automated renewal options if policy prohibits these.
New | Allow for Pre-Expiry reminder emails to be sent even if Auto-Renew is ON
File:Nightly-1222.war | MD5 |0b0f6d0666e8b7d47c35e1548928e99c
Improved | GUI dispaly of menus for a variety of new policy configurations #122-#126
File:Nightly-1218.war | MD5 |d2816178ca0fa64d5b32cfc42fcdb0a1
Improved | Hide GUI "Outbound Transfer" menu when zone policy requiers additional approvals
New | Pre and Post Expiry email opitons / templates
File:Nightly-1217a.war | MD5 |cd20aececeb6da82575359520d278d03
Improved | Domain Contact Edit policy
File:Nightly-1217.war | MD5 |cf8c1cb0af4d5ddc1a0929cc97165c44
Improved | Registrar Locking Prohibitions ( Bulk )
File:Nightly-1216a.war | MD5 |a0e066d39315ef88633cb0b3c6834473
Improved | Realex PCI Gateway integration # 86
File:Nightly-1216.war | MD5 | dcdef9ac04ea307b8527052be9949d65
Improved | Domain > Contacts now displays options that relect the zone settings more accurately
Improved | Token Add / Edit improvements
Improved | goolge "no captcha. captcha" now defaults to basic google captcha if key file does not exist
File:Nightly-1214.war | MD5 |c84e602018e617d20af5256d8d9163a1
New | Option to prevent use of client locks by registrars ( domain and contact locks ) # 108
File:Nightly-1211.war | MD5 | a8744589fdec63a29d1569e851ae4605
Fix | Display of Domain Edit menu for Active domains #114
Improved | Document uploads for change of registrant request now retains origional name.
New | Email Template for domain Delete Request ( when admin approval is required ) # 106
New | goolge "no captcha. captcha support on login page # 111
File:Nightly-1208.war | MD5 | 9d455bd8f7f14f26bbc3a22cfcf6b96d
Fix | Registrar view of deleted names #95 Improved | Scheduling Weekends and Holidays #98 New | Admin Edit of Transfer Time Out Dates # 110
File:Nightly-1206.war | MD5 | 0a6b32bf11745d84377c17edd264921c
New | Scheduling Weekends and Holidays #98
File:Nightly-1204.war | MD5 | bbf374e9316132375b269e9a07ff858b
Fixed | Registrar Bulk Renew ( # 103 ) Fixed | Registrar Sync Expiry "Hide" Option ( # 103 )
File:Nightly-1130.war | MD5 | c120f7e55c44fdf1efbb5c2ba989ee81
Fixed | Registrar Delete ( # 102 ) Fixed | Registar Bulk Restore Hidden ( # 78 )
File:Nightly-1126.war | MD5 | 9dcf137afc600efe5e72bf12464da382
Fixed | ( # 96 )
File:Nightly-1125.war | MD5 | 5f6f721ae357262f73b139305ba26c96
Fixed | ( # 94 ) Fixed | ( # 96 ) Improved | ( # 75 )
File:Nightly-1122.war | MD5 | d95908c4bee2b97eecb0beef7da08c20
Improved | Added purge to the manual zone automation ( # 91 ) Improved | More life-cycle options on the Registrar Automation ( # 88 ) Fixed | Edit of contacts without e164 fax number error ( # 90 )
File:Nightly-1119.war | MD5 | dfbd2527da54dd803fa41f0b5b64522c
File:Nightly-1117.war | MD5 | b9e72b591127fdd8a33204b6f98738ab
Improved | Option to treat "Restore" transactions as new registrations ( # 88 ) Improved | Option to set the frequency of delete reminders ( # 89 )
File:Nightly-1115.war | MD5 | b9e72b591127fdd8a33204b6f98738ab
Fix | Resolves registrar UI DS Record issue ( #84 ) Improved | Re-registratation options on Change of Registrant ( # 76 ) Improved | Bulk change of contacts - new options ( # 77 ) Improved | Bulk Edit of contacts e164 enhancements ( # 80 )
File:Nightly-1113.war | MD5 | 14e5faf8dacbc06e91ffd9f1860acc02
Fix | Resolves issue saving the new registrar "Automation" preferences
File:Nightly-1112.war | MD5 | :b865ffc12e429226c02f302dbb4468d8
New | Two additional registrar restore preferences ( depending on if the domain is expired or not ) New | Variable Redemption Settings New | Excluded "Build Time" TXT record from zone file
File:Nightly-1106.war | MD5 | 63f50000a01066b9b3723e2bff6cbd19
File:Nightly-1030.war | MD5 | ae5c39f5c46cfb25a7a721005f6f30d5
File:Nightly-1023.war | MD5 | 2eb5aea3bf9cc88154f7bfe5f5ddf609
File:Nightly-1008.war | MD5 | cca7bd99a23eacef1fdfbd3459d86cc9
File:Nightly-1002.war | MD5 | 479ae63ef61384e4546491eafad9c832
File:Nightly-0930.war | MD5 | 1e2408e93ca077c7b61e6c0160a84521
File:Nightly-0927.war | MD5 | 3da22b2d366a3c3098cd17bfb5476211
File:Nightly-0922.war | MD5 | 1fadc47291f16987f235444143e86ca9
File:Nightly-0921.war | MD5 | 84b2cbd0eed97c707a523659fb0d42e2
File:Nightly-0914.war | MD5 | d8182470e03c983ebfbc54deaf9a6749
File:Nightly-0910.war | MD5 | ce97135c88284a700b7b8326ae632002
File:Nightly-0909.war | MD5 | ea7fab4086d600301d3a07e4c618f833
File:Nightly-0906.war | MD5 | a4eb0402cf86da688dce91d8d921153a
File:Nightly-0831.war | MD5 | 7113dd44e7e8481349004ee5bbcf532b
File:Nightly-0817.war | MD5 | 309d13db94e52e01a65130528c9ee97a
File:Nightly-0727.war | MD5 | 522cb1d8d43bec27a1850186c846ae46
File:Nightly-0708.war | MD5 | 152644df80d636a729a0f5d0bcaf13e1
File:Nightly-0705.war | MD5 | 504b7084da42dad0ddb9e24212658e17
File:Nightly-0702.war | MD5 | 7ac816f71e557857d9bc5bdbcb1916c5
File:Nightly-0626.war | MD5 | 26627c55a7088db2597e49a7f41bce50
File:20140623.war ( 35MB ) | MD5 | ede20581e5e44a85c5bd897b81eb5abf
Improved report formatting and data escrow / offsite backup Improvements to WHOIS command line formatting (flexibility and nTLD compatibility) Nightly Builds
File:Nightly-0618.war | MD5 | 765f745915abdf8afbfeff533bdf1851
File:Nightly-0604.war | MD5 | 5e3e619e4656392f0c7e1fb6607b2200
File:Nightly-0529.war | MD5 | 60ef09f0f19437ebe59185ae26343790
File:Nightly-0528.war | MD5 | 3f97b7dc7e7ef806a9cffe513ab1abd3
Release Notes
20140512.war
Resolves issue that caused EPP transfers to fail if the AuthCode contains something other than A-z,0-9.
Resolves issue with configuration of encrypted offsite backups
20140126.war MD5 6ddb3fd08a6992ab3da1569266181539
patch for 20140122.war that resolves the "null" error when you fail to enter a parameter in the admin web-based whois, also a whois query of a prohibited domain will now return "Domain Status: Prohibited String - Object Cannot Be Registered" not "Prohibited - No Object Found" as was the case in the previous release.
20140122.war MD5 a45d0dae17c9b89902a581d86ce789e
patch for 20140119 that includes two 2 DTD docs required for offline epp functionality
20140119.war MD5 a45d0dae17c9b89902a581d86ce789e
improved EPP compatibility if a domain is on the prohibited list the WHOIS status will display "Prohibited - No Object Found" not just "No Object Found" On the authinfo site config page there's a new setting - "Always Change?" - if this is true, the password will always be changed. Otherwise, the password will be reset only if the registrar has secure auth info PWs set. If they have plain text PWs and this setting is on, then the password is just sent to them, not changed.if a registrar has "auto-renew" on then the system will not send expiry reminder emails to the Registrar / Registrant ( if configured )a cross-script security fix quick-pay gateway logging fixes
20140101.war MD5 7e080bf5c8aa072aab6bc36f9ca7e3f8
removes the option to exclude several audit tables when making backups "quick" partial backups. If you want to take occasional "snapshots" of the DB without the full audit history then we suggest using the escrow feature.
Nightly Builds 2013
20131209.war
fix for "Config > Login Page" jsp error fix for DNSSEC key length validation fix for cross - script vulnerability
20131202.war
allowing local encryption/signing and save of backups and escrow (it's now possible to schedule a new escrow/backup and have it encrypted/signed even it won't be shipped offsite) the signing keys for each zone are generated the first time the signing is scheduled, then they're saved in a PGPKeyRingCollection keystore (/opt/cocca-8/keys/keyringcoll_escrow.pskr). The generated public key can be downloaded from the escrow/backup page. escrow file names fixed to comply with the latest RFC the full escrow also makes a report file that is bundled with the file when shipped offsite backups sorting by date / time don't allow backups / escrow to be downloaded from the UI
NOTE:
The signing keys generation is implemented with the BouncyCastle security provider, that's the reason why this line has to be inserted in the java.security file (/opt/cocca-8/java/jre/lib/security/java.security): security.provider.2=org.bouncycastle.jce.provider.BouncyCastleProvider
20131117.war
Searchable WHOIS enhancements Login Page "WHOIS" removed Public monitoring mini-Site removed Improved DS record validation
20131004.war
several SQL injection fixes fix for phone validation preventing save of Client > Edit page. SQL update to sync the EPP API ON / OFF toggle.
20130930.war
fix for EPP API access toggle ON /OFF fix for zone reminder email configuration and registrar delivery over-ride
20130917.war
Fixes a few issues introduced by accidental regression of a few jsp files in 20130910.war
20130916.war
escrow Scheduling improvements new Library for offsite FTP to resolve failure to disconnect issue.
20130915.war
Fix for "Zone > Details" menu error introduced in 20130910.war
20130910.war
GUI support for Type 7 DNSSEC records RSA/SHA/NSEC/SHA ( supported already via EPP )
20130909.war
minor security fix on the Zone ( Admin ) pages
20130903.war
improved validation for in-zone hosts improved escrow scheduling
20130805.war
improved WHOIS log format ( removed some "fluff" ) e164 phone number escrow enhancements improved escrow schedule options ( new custom option )
20130728.war
improved CSV output filtering for several query improved functionality in captcha setup
20130723.war
support for new ICANN registry escrow format - http://www.ietf.org/id/draft-arias-noguchi-dnrd-objects-mapping-03.txt improved EPP password re-set functionality
20130719.war --- new "simple captcha" implementation (captcha for Latin, Arabic and Chinese alphabet) --- new "reload" captcha around the place. 20130716.war
security fixes XSS ( remaining known issues ).
20130713.war
fix for password enable function ( no longer requires the "previous" password when enabling for the first time.
20130711.war
resolves error in cross - script vulnerability fix that prevented registration of domains with "-" via the UI resolves issue re-setting the EPP password and changing the AuthCode encryption at the same time improved error handling of browser errors - limits the stack trace visibility to sys-admins only
20130708.war
security enhancements ( cross-site scripting issue )
20130705.war
improved "fine grain" control of domain Status's in the GUI security enhancements ( several SQL injection fixes )
20130626.war
fix for several SQL injection vulnerabilities #1.18-1.1.9 and cross-site scripting (reflected) #2.1 - 2.10
20130623.war
confirmation email fix ( offsite escrow ) limit the file types that can be uploaded as documents.
20130622.war
some bug fixing on the Escrow page the possibility for TLD admin to append only the folder name of Escrow deposit to the sys_admin folder. Validation on escrow offsite notify email Fixing for SQL Injection vulnerabilities from 1.1 to 1.17 (vulnerabilities document)
20130620.war
New Registrar "Automation" preference - what to do when a name that is "pending delete" is restored. Option A: Restore then Renew manually ( 2 EPP commands ). Option B: Restore and Renew in one step ( one EPP command ). This is set on the Registrar's Automation preference page.
20130619.war
fix for password re-set / re-authenticate function on Login > Details page improved house-keeping database maintenance > "Clean Up" now does some back-end clean up on a few tables that tend to get bloated. It also now has the option to do a gentle "vacuum" or "vacuum full". "Vacuum full" will impact performance and is best done during an outage.
20130614.war
fix for "table column error" on Maintenance menu. fix for login / contact password validation
20130612.war
includes some SQL missing from 20130610.war improved admin email validation for LOGIN an CLIENT user types
20130610.war
login related improvements improvements to offsite escrow cross scripting vulnerabilities fix backup configuration fixes
20130605.war
txt file export for transfer query
20130601.war
fix for GUI transfer issue.
20130529.war
improvement - in order to change passwords users must enter the existing password first resolves "SSL cookie without secure flag set" issue resolves "cookie without HttpOnly flag set" issue resolves "cacheable HTTPS response" issue
20130528.war
improvements to transfer report in the GUI only, CSV to follow in next release. bug fix for the missing "Z" on one digit EPP time improvements to CSV import / zone migration to deal with glue records more elegantly.
20130527.war
security fixes on a few pages ( sql injection vulnerability found during third party security audit ) prevent auto-fill on password setting pages makes default "EPP time" three decimals (not one), note : you can change the preferences to round to one decimal if you wish.
20130520.war
changes to EPP time, now configurable on the EPP setup page (1 - 3 decimals). for example 2013-05-20T03:05:47.447Z >>> can be changed to >>> 2013-05-20T03:05:47.0Z.
20130517.war
improved offsite backup feature ( encrypt and sign backup then ship it offsite by ssh or ftp )
20130515.war
improvements to the domain AuthCode reset functions. enforces use of CSRF tokens. enforces session IP check in cookies.
