opendkim (2.11.0~beta2-2) unstable; urgency=medium

    The opendkim package has undergone a general overhaul. As a result, a few
    stats utilities and additional documentation are now included. More
    importantly, note that most utilities whose name begins with "opendkim-"
    are now installed in /usr/sbin instead of /usr/bin. This is to follow the
    intention of the upstream project more closely, as these programs are
    designed and documented as system utilities.

    We remind users that opendkim is best configured by editing
    /etc/opendkim.conf. The legacy defaults file at /etc/default/opendkim is
    still available, as is the script /lib/opendkim/opendkim.service.generate.
    However, these provide no additional value over the default configuration
    file /etc/opendkim.conf. Please take this opportunity to review your
    configuration setup.

 -- David Bürgin <dbuergin@gluet.ch>  Tue, 28 Jan 2020 10:13:12 +0100

opendkim (2.11.0~alpha-8) unstable; urgency=medium

    On systems using systemd, this version replaces /etc/default/opendkim
    with the files /etc/systemd/system/opendkim.service.d/overrride.conf
    and /etc/tmpfiles.d/opendkim.conf carrying over non-default settings.

    Note: since /etc/default/opendkim is removed if you are using systemd, if
    you later switch back to sysvinit, you will have to manually recreate it
    if needed.

 -- Scott Kitterman <scott@kitterman.com>  Mon, 07 Nov 2016 12:14:31 -0500

opendkim (2.5.2+dfsg-2) unstable; urgency=low

    There are a number of optional features newly enabled in this revision.
    Except for OversignHeaders, none of them are active by default.

    Enable support for optional oversigning of header fields to prevent
    malicious parties from adding additional instances of the field.  By
    By default, always oversign From (sign using actual From and a null From
    to prevent malicious signatures header fields (From and/or others)
    between the signer and the verifier.  From is oversigned by default in the
    Debian package because it is often the identity key used by reputation
    systems and thus somewhat security sensitive.

    Support for RFC 5518 Vouch By Reference (VBR) is available.  See
    opendkim.conf.5 for information about how to enable VBR in opendkim

    Support for the experimental RFC 6541 DKIM Authorized Third-Party
    Signatures (ATPS) protocol is also enabled.  No signing is performed
    unless ATPSDomains is set in /etc/opendkim.conf.  Verification is always
    performed

    Command line tools for various utilty functions are now split out into a
    new opendkim-tools package

 -- Scott Kitterman <scott@kitterman.com>  Tue, 10 Apr 2012 00:16:02 -0400

opendkim (2.5.0.1+dfsg-1) unstable; urgency=low

    There is one backward compatibility issue, referring to the "BodyLengths"
    setting which has been removed.  Instead, see the documentation for
    "BodyLengthDB".

 -- Scott Kitterman <scott@kitterman.com>  Wed, 14 Mar 2012 22:34:48 -0400