Navigation:
Browse pkgsrc
(this page) 2010-05-06 11:38:24 by Fredrik Pettai | Files touched by this commit (2) |  |
Log message:
unbound-1.4.3:
Features:
* Experimental ECC-GOST algorithm support.
* unbound-host disables use-syslog from config file.
* Include less in config.h and include per code file for ldns, ssl.
Bug Fixes:
* [bugzilla: 305 ] (regarding pkt_dname_tolower).
* Fix chain of trust with CNAME, for the DS processing proof.
* Fix validation of queries with wildcard names (*.example).
* Fix EDNS probe for .de DNSSEC testbed failure (backoff).
* unbound control flushed items are not counted when flushed again.
* iana portlist updated.
* [bugzilla: 301 ] (regarding unbound-checkconf).
* Fixed random numbers for port, interface and server selection.
* Refer to the listing in unbound-control man page in the extended \
statistics entry in the unbound.conf man page.
* Fix interface-automatic for OpenBSD: msg.controllen was too small.
* check for IP_SENDSRCADDR for interface-automatic or IP_PKTINFO.
* for NSEC3 check if signatures are cached.
* Reordered configure checks so fork and -lnsl -lsocket checks are earlier.
* ldns tarball updated.
* Fix python use when multithreaded.
* Fix solaris python compile.
* spelling fix in validation error involving cnames.
|
| 2010-03-16 14:51:51 by Joerg Sonnenberger | Files touched by this commit (2) |
Log message: unbound-1.4.3: - Fix a memory alignment issue, that can be triggered remote on (some) 64bit systems - Fix daemonize on Solaris 10 to correctly detach from terminal - Extend unbound-control with new functions - Better VERB_DETAIL output - Improve latency of DNSSEC requeries by optionally prefetching the key earlier in the validation process - Prefetch option for popular queries before they expire - Fix re-query pattern on invalid DNSKEY or DS records to reduce traffic to a few packets / zone instead of a few packets / record |
| 2010-03-08 20:56:20 by Fredrik Pettai | Files touched by this commit (3) |
Log message: Updated to unbound-1.4.1. +~40 features and bugfixes. The changelog is too long to paste it here, but you can find it at http://www.unbound.net/download.html |
| 2010-01-17 13:02:58 by Thomas Klausner | Files touched by this commit (724) | |
Log message: Recursive PKGREVISION bump for jpeg update to 8. |
| 2009-11-24 02:08:06 by Roy Marples | Files touched by this commit (1) |
Log message: Add the reload command. |
| 2009-10-19 19:03:33 by Joerg Sonnenberger | Files touched by this commit (2) | |
Log message: Update to unbound-1.3.4: - Fixed bug where NSEC3 signature was not checked. This meant that a DS could be spoofed away by a carefully crafted packet. A downgrade attack on existing secure delegations. - updated iana port list. |
| 2009-08-23 16:17:39 by Hasso Tepper | Files touched by this commit (3) |
Log message: Update to 1.3.3. Upstream changelog is too long to paste it here, you can read it from http://www.unbound.net/download.html. |
| 2009-06-14 20:09:49 by Joerg Sonnenberger | Files touched by this commit (291) |
Log message: Remove @dirrm entries from PLISTs |
| 2008-12-17 19:14:01 by Joerg Sonnenberger | Files touched by this commit (4) |
Log message: Update to unbound-1.1.1: - improve chroot handling - even stricter validation - support for blocking DNS rebinding attacks - DLV support - bugfixes The package now uses the normal net/ldns package instead of the local copy. |
| 2008-10-09 03:31:35 by Joerg Sonnenberger | Files touched by this commit (5) |
Log message: Update to unbound-1.0.2. Beside some minor bugfixes, this brings even stricter filtering to defeat some additional DNS attacks and support for source address randomisation and optional capitalisation support. The former can be configured when multiple public IPs are present, the latter is considered experimental as a small number of servers doesn't support it. |
New packages: