As long as we're depending on some of the optional modules (Crypt::OpenSSL::Random,
and Digest::BubbleBabble), depend on the rest of the optional modules
(Crypt::OpenSSL::ECDSA and Crypt::OpenSSL::EC).
Changes: https://metacpan.org/changes/distribution/Net-DNS-SEC
- Fix: linking against libev on FreeBSD
- Fix: Let configure report problem on FreeBSD when configuring with
libevent and libunbound <= 1.4.22 is not compiled with libevent.
- Better libcheck detection
- Better portability with UNIX systems
PR: 197560
Submitted by: pi
Approved by: zi (maintainer)
Major Features:
- RFC 7344: CDS and CDNSKEY (read record types).
- per zone statistics with --enable-zone-stats
- Disabled use of SSLv3 in nsd-control.
- Synthesize CNAMEs with same TTL as DNAME.
- nsd-checkconf -f prints out full name of pidfile (with dir). [1]
PR: 197291,
196449 [1]
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl>,
Adam Zaleski <adam@zaleski.org> [1]
libasr is a FREE asynchronous DNS resolver.
libasr runs on top of the OpenBSD operating system but also has a portable
version that can build and run on several systems, including:
* Linux
* FreeBSD
* NetBSD
* DragonFly
* MacOSX
This port packages the development snapshots released by OpenSMTPD team.
WWW: https://github.com/OpenSMTPD/libasr
libasr is a FREE asynchronous DNS resolver.
libasr runs on top of the OpenBSD operating system but also has a portable
version that can build and run on several systems, including:
* Linux
* FreeBSD
* NetBSD
* DragonFly
* MacOSX
WWW: https://github.com/OpenSMTPD/libasr
Changes since test3, from CHANGELOG file:
Add --log-queries=extra option, which makes logs easier
to search automatically.
Add --min-cache-ttl option. I've resisted this for a long
time, on the grounds that disbelieving TTLs is never a
good idea, but I've been persuaded that there are
sometimes reasons to do it. (Step forward, GFW).
To avoid misuse, there's a hard limit on the TTL
floor of one hour. Thansk to RinSatsuki for the patch.
Cope with multiple interfaces with the same link-local
address. (IPv6 addresses are scoped, so this is allowed.)
Thanks to Cory Benfield for help with this.
Add --dhcp-hostsdir. This allows addition of new host
configurations to a running dnsmasq instance much more
cheaply than having dnsmasq re-read all its existing
configuration each time.
DNS SRV record command line wrapper
-----------------------------------
wrapsrv adds support for connecting to a network service based on DNS SRV
record lookups to commands that do not support the DNS SRV record. wrapsrv
implements the weighted priority client connection algorithm in RFC 2782.
The specified command line will be invoked one or more times with %h and %p
sequences in the command line substituted for the hostname and port elements
of the selected SRV record.
WWW: https://github.com/farsightsec/wrapsrv
Differential Revision: https://reviews.freebsd.org/D1488
Approved by: mat (mentor)
Sponsored by: Farsight Security, Inc.
Mirror the distfile on LOCAL as a http backup for clients that
can't use https.
Use INSTALL_TARGET=install-strip instead of ${STRIP_CMD}.
Differential Revision: https://reviews.freebsd.org/D1473
Approved by: mat (mentor)
Several ports had rc.d scripts with hardcoded command_interpreter string
as /usr/bin/perl. This symlink is not guaranteed to be in place, and it
isn't even an option for perl 5.20. For affected ports, the interpreter
was changed to localbase.
In one case, the interpreter was correct, but it wasn't surround by
quotes. Since the rc.d script would break if a space was contained in
${PREFIX}, quotes were added in that case.
