From 2edd0f248abc1e689128d6a9d1360f3367a6a151 Mon Sep 17 00:00:00 2001 From: ThomasV Date: Sat, 25 Jul 2015 11:53:43 +0200 Subject: [PATCH] release notes --- RELEASE-NOTES | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/RELEASE-NOTES b/RELEASE-NOTES index 2c97b8e9..8eeabc65 100644 --- a/RELEASE-NOTES +++ b/RELEASE-NOTES @@ -1,8 +1,9 @@ # Release 2.4 - * The Openalias/DNSSEC plugin was merged into the main electrum - code. The DNSSEC verification procedure was rewritten. The previous - validation method, which was part of the OpenAlias plugin, is - vulnerable and should not be trusted (Electrum 2.0 to 2.3). + * The Openalias/DNSSEC plugin was merged into the main electrum code. + The validation of aliases uses DNSSEC and requires pyCrypto. + * The DNSSEC validation code was rewritten. The previous validation + method, which was part of the OpenAlias plugin, is vulnerable and + should not be trusted (Electrum 2.0 to 2.3). * BIP70 payment requests can be signed using Bitcoin keys stored in DNS (OpenAlias). The identity of the requestor is verified using DNSSEC.