RIPE Database Release 1.101

Date of Deployment

Release Candidate (RC) environment: 17 June 2021
Production environment: 1 July 2021 

New or Improved Features

Whois Release 1.101 includes the following main changes:

• Switch RIPE database to UTC timezone
• Display an error on NRTM if client is blocked by ACL limit (#812)
• Added rewrite rules to embedded Jetty (#801)
• RDAP nameserver queries always return Not Implemented (#811)
• Updated dependencies
  
  

The full list of changes can be found in the source repository:
https://github.com/RIPE-NCC/whois/blob/master/changes.txt

Operational Changes

Some operational changes will also be made to the production environment on 1 July 2021:

• Remove support for TLS versions 1.0 and 1.1 on HTTPS connections
  • The IETF has formally deprecated these TLS versions, now only versions 1.2 and 1.3 are recommended.
• Remove insecure TLS cipher algorithms
  • TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
  • TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
  • TLS_DHE_RSA_WITH_SEED_CBC_SHA
  • TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
• Remove HTTP redirects for whois.ripe.net and www.db.ripe.net
  • HTTP requests to these hosts will no longer redirect to https://apps.db.ripe.net but will return 400 Bad Request.
• Remove HTTP redirects for the legacy Whois REST API
  • The legacy Whois REST API was retired in 2015, a temporary redirect is now being removed.
  • HTTP requests to http://apps.db.ripe.net/whois/lookup/ripe will return 400 Bad Request.

Please check your Whois client in case you are affected by these changes.