./security/opendnssec, OSS for a fast and easy DNSSEC deployment

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.4.9nb3, Package name: opendnssec-1.4.9nb3, Maintainer: pettai

The OpenDNSSEC project announces the development of Open Source software
that manages the security of domain names on the Internet.
The project intends to drive adoption of Domain Name System Security Extensions
(DNSSEC) to further enhance Internet security.


Required to run:
[textproc/libxml2] [net/ldns] [security/softhsm]

Required to build:
[devel/cunit]

Package options: softhsm

Master sites:

SHA1: 08736372058b5f1e5344261b21cf950243d74abb
RMD160: c44ed64fb1471d944d2964ec970d8e498a3927f6
Filesize: 1019.238 KB

Version history: (Expand)


CVS history: (Expand)


   2016-04-11 21:02:08 by Ryo ONODERA | Files touched by this commit (527)
Log message:
Recursive revbump from textproc/icu 57.1
   2016-03-13 10:36:59 by Takahiro Kambe | Files touched by this commit (11) | Package updated
Log message:
Bump PKGREVISION by chaging default version of Ruby.
   2016-03-05 12:29:49 by Jonathan Perkin | Files touched by this commit (1813) | Package updated
Log message:
Bump PKGREVISION for security/openssl ABI bump.
   2016-02-25 12:06:57 by Havard Eidnes | Files touched by this commit (2)
Log message:
Upgrade opendnssec to version 1.4.9.

Upstream changes:
News:
  The main motivations for this release are bug fixes related to use
  cases with large number of zones (more than 50 zones) in combination
  with an XFR based setup. Too much concurrent zone transfers causes
  new transfers to be held back. These excess transfers however were
  not properly scheduled for later.

  No migration steps needed when upgrading from OpenDNSSEC 1.4.8.

Bugfixes:
 * Add TCP waiting queue. Fix signer getting `stuck' when adding
   many zones at once. Thanks to Havard Eidnes to bringing this
   to our attention.
 * OPENDNSSEC-723: received SOA serial reported as on disk.
 * Fix potential locking issue on SOA serial.
 * Crash on shutdown. At all times join xfr and dns handler threads.
 * Make handling of notifies more consistent. Previous implementation
   would bounce between code paths.
   2015-11-16 11:09:08 by Havard Eidnes | Files touched by this commit (5) | Package updated
Log message:
Update OpenDNSSEC to version 1.4.8.2.

Pkgsrc changes:
 * Adapt patches to match new files.
 * Add new migration scripts to PLIST

Upstream changes:

News
 * Support for RFC5011 style KSK rollovers. KSK section in the KASP
   now accepts element.
 * Enforcer: New repository option allows to generate keys with
   CKA_EXTRACTABLE attribute set to TRUE so keys can be wrapped and
   extracted from HSM.

Bugfixes
 * SUPPORT-145: EOF handling an ARM architecture caused signer to hang.
 * Fixed signer hitting assertion on short reply XFR handler.
 * Include revoke bit in keytag calculation.
 * Increased stacksize on some systems (thanks Patrik Lundin!).
 * Stop ods-signerd on SIGINT.

Note:
 * Updating from earlier versions of OpenDNSSEC requires use of the
   database migration script(s) included in ${PKG}/share/opendnssec/
   as the migrate_1_4_8* scripts.
   2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434)
Log message:
Add SHA512 digests for distfiles for security category

Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2015-10-10 03:58:23 by Ryo ONODERA | Files touched by this commit (399)
Log message:
Recursive revbump from textproc/icu
   2015-04-06 10:17:41 by Adam Ciarcinski | Files touched by this commit (470)
Log message:
Revbump after updating textproc/icu