We are pleased to announce the release of version 1.7.2 of the Unbound recursive DNS resolver. There are a number of bug fixes, but also some features.
This release fixes bugs in DNS-over-TLS for windows, and adds the option for Windows users to use the CA certificates from the Windows cert stores. This can be set with the tls-win-cert: yes option in unbound.conf.
The code has been updated with a speed up that improves performance for large numbers of incoming TCP and TLS connections. In addition, QNAME minimisation is now enabled by default. Lastly, there is an option to allow to ignore an unset RD bit for access control subnets and always allow recursion to the request.
For a full list of changes and binary and source packages, see the download page.