OpenDNSSEC now supports both input and output adapters for AXFR and IXFR in addition to file transfer.
The HSM PIN can now be omitted from the conf.xml file and entered via the 'ods-hsmutil login' command instead for increased security.
The auditor is no longer supported in 1.4. This greatly reduced the dependencies of OpenDNSSEC, namely it no longer depends on Ruby. Alternative validation tools are described here.
(Some enhancements are also available in later 1.3 releases - see the 1.3 release NEWS file)
ods-ksmutil backup done
is deprecated - for more details see ods-ksmutil backup
Allow for Classless IN-ADDR.ARPA names (RFC 2317).
The versioning scheme used for releases and the release maintenance policy have both been updated as of 1.4. Please see the Release Management Process for details.
A full list of bug fixes and issue numbers can be found in the 1.4 release NEWS file.
A summary of the updates in 1.4.0 that are not in 1.3.13 can be found here.
The 'Multi-threaded enforcer' feature (which was available in earlier beta versions of 1.4) was removed from the 1.4 release due to issues with the implementation. Note that the 2.0 release will deliver significant performance improvements for running with many zones.