Path to this page:
./
net/bind911,
Berkeley Internet Name Daemon implementation of DNS, version 9.11
Branch: pkgsrc-2021Q3,
Version: 9.11.36,
Package name: bind-9.11.36,
Maintainer: pkgsrc-usersBIND, the Berkeley Internet Name Daemon, version 9 is a major rewrite
of nearly all aspects of the underlying BIND architecture. Some
of the important features of BIND-9 are:
- DNS Security
- IP version 6
- DNS Protocol Enhancements
- Views
- Multiprocessor Support
- Improved Portability Architecture
- Full NSEC3 support
- Automatic zone re-signing
- New update-policy methods tcp-self and 6to4-self
This package contains the BIND 9.11 release.
- Catalog Zones, a new method for provisioning servers
- "dnstap", a fast and flexible method of capturing and logging
DNS traffic.
- "dyndb", a new API for loading zone data from an external database
- dnssec-keymgr, a new key mainenance utility
- mdig, an alternate version of dig utility
- And more...
MESSAGE.rcd [+/-]===========================================================================
$NetBSD: MESSAGE.rcd,v 1.1 2019/06/20 12:26:33 jperkin Exp $
Please consider running BIND under the pseudo user account "${BIND_USER}"
in a chroot environment for security reasons.
To achieve this, set the variable "named_chrootdir" in /etc/rc.conf to
the directory with the chroot environment e.g. "${BIND_DIR}".
Note: named(8) requires writable directories under "/etc/namedb" which
specified by "directory" in "options" statement:
cache
keys
nta
Make sure to these directories exists with writable by "${BIND_USER}" user.
===========================================================================
Package options: inet6, readline, threads
Master sites:
SHA1: 4b45d15edc1e3b7902129ce27baec58a50d76b5c
RMD160: 3357ec404f04a713b3e1285b0c193ea107993f0a
Filesize: 8118.434 KB
Version history: (Expand)
- (2021-11-02) Updated to version: bind-9.11.36
- (2021-09-28) Package added to pkgsrc.se, version bind-9.11.35 (created)
CVS history: (Expand)
2021-11-01 23:14:43 by Thomas Merkel | Files touched by this commit (3) |  |
Log message:
Pullup ticket #6524 - requested by taca
net/bind911: security fix
Revisions pulled up:
- net/bind911/Makefile 1.51
- net/bind911/distinfo 1.37
- net/bind911/patches/patch-configure 1.6
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 29 06:02:26 UTC 2021
Modified Files:
pkgsrc/net/bind911: Makefile distinfo
pkgsrc/net/bind911/patches: patch-configure
Log message:
net/bind911: update to 9.11.36
--- 9.11.36 released ---
5736. [security] The "lame-ttl" option is now forcibly set to 0. This
effectively disables the lame server cache, as it could
previously be abused by an attacker to significantly
degrade resolver performance. (CVE-2021-25219)
[GL #2899]
5716. [bug] Multiple library names were mistakenly passed to the
krb5-config utility when ./configure was invoked with
the --with-gssapi=[/path/to/]krb5-config option. This
has been fixed by invoking krb5-config separately for
each required library. [GL #2866]
|
Browse pkgsrc
(this page)
net
CVSweb ] [ 
Homepage ] [ 
RSS ] [ 
Required by ] [ 
Add to tracker ]
New packages: