RIPE Database Release 1.101
Date of Deployment
Release Candidate (RC) environment: 17 June 2021
Production environment: 1 July 2021
New or Improved Features
Whois Release 1.101 includes the following main changes:
- Switch RIPE database to UTC timezone
- Display an error on NRTM if client is blocked by ACL limit (#812)
- Added rewrite rules to embedded Jetty (#801)
- RDAP nameserver queries always return Not Implemented (#811)
- Updated dependencies
The full list of changes can be found in the source repository:
https://github.com/RIPE-NCC/whois/blob/master/changes.txt
Operational Changes
Some operational changes will also be made to the production environment on 1 July 2021:
- Remove support for TLS versions 1.0 and 1.1 on HTTPS connections
- The IETF has formally deprecated these TLS versions, now only versions 1.2 and 1.3 are recommended.
- Remove insecure TLS cipher algorithms
- TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
- TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
- TLS_DHE_RSA_WITH_SEED_CBC_SHA
- TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
- Remove HTTP redirects for whois.ripe.net and www.db.ripe.net
- HTTP requests to these hosts will no longer redirect to https://apps.db.ripe.net but will return 400 Bad Request.
- Remove HTTP redirects for the legacy Whois REST API
- The legacy Whois REST API was retired in 2015, a temporary redirect is now being removed.
- HTTP requests to http://apps.db.ripe.net/whois/lookup/ripe will return 400 Bad Request.
Please check your Whois client in case you are affected by these changes.