- Update to 2.2.0
With this release nsd no longer requires named-xfer to be
present on the system.
I also changed the options to a configure script.
Added file(s):
- scripts/configure.nsd
PR: ports/76412
Submitted by: Olafur Osvaldsson <oli@isnic.is>
All ports depending on postgresql shall use the USE_PGSQL=yes knob
defined in Mk/bsd.ports.mk. Bumping portrevisions where needed.
PR: 75344
Approved by: portmgr@ (kris), ade & sean (mentors)
allows for per record configuration. It also includes a wizard for generation
of configuration files.
PR: ports/76614
Submitted by: Dan Smith <dan@algenta.com>
Name: BIND: Self Check Failing [Added 2005.25.01]
Versions affected: BIND 9.3.0
Severity: LOW
Exploitable: Remotely
Type: Denial of Service
Description:
An incorrect assumption in the validator (authvalidated) can result in a
REQUIRE (internal consistancy) test failing and named exiting.
Workarounds:
Turn off dnssec validation (off by default) at the options/view level.
dnssec-enable no;
Active Exploits: None known
Bump PORTREVISION accordingly.
It should be noted that the vast majority of users would not have
DNSSEC enabled, and therefore are not vulnerable to this bug.
BIND 8.4.6-REL is a security release of BIND 8.4.
It is possible to remotely trigger a overrun causing a
denial of service. If you are running BIND 8.4.4 or
BIND 8.4.5 you should upgrade.
Also:
1. Add ipv6 as a virtual category, since a key reason for the
BIND 8.4.x branch is IPv6 transport.
2. Download the PGP .asc files for the src and doc tarballs.
3. Add a new example file to PORTDOCS.
Version bump. This release fixes segfault in argument
parsing. Cleaned -h output (remved longopts when they are
unavailable) Improved signal handling and blacklist feature
added. Proper handling of paths in documentation.
I implemeted a pselect in lib.c for BSD 4.x support. Please
let me know if this could be handeled in a better way.
PR: ports/76060
Submitted by: Natanael Copa <ncopa@users.sourceforge.net>
Drill is a tool ala dig from BIND. It was designed with
DNSSEC in mind and should be a useful debugging/query tool
for DNSSEC.
PR: ports/75882
Submitted by: Jaap Akkerhuis <jaap@NLnetLabs.nl>
missing a couple of dependencies on the uint32.h header, so make(1) was
postponing its creation.
Bump PORTREVISION, since it is the same for the IPv6 and !IPv6 cases,
although this particular change does not affect the !IPv6 case at all.
PR: 75564
Submitted by: oHmEr <ohmer@epita.info>
o Move databases/sqlite to databases/sqlite2.
o Fix dependency on databases/sqlite.
o Update sqlite2 to 2.8.15.
o Bump PORTREVISION, accordingly.
Approved by: portmgr, maintainers of sqlite and related ports
Sqldjbdns is an authoritative DNS server that pulls its
data directly from a set of SQL tables. It supports fully
dynamic A, MX, TXT, and PTR records, and run-time configurable
static NS and SOA records. It also supports schedule expiry
and introduction of records.
This package also includes dnscache with PostgreSQL backend
PR: ports/71345
Submitted by: Radim Kolar <hsn@netmag.cz>
And while I'm here:
1. Download the PGP .sig file, in case the user wants to verify the package
2. Switch to PLIST_FILES for the one file this port installs
3. Replace the lone patch file with a ${SED} command
For those keeping score at home, that's 3 inodes gone with one commit! :)
Approved by: edwin (maintainer)
dns/walker is the same ports. And name 'walker' was
recognized as a better name. So we move dns/dnssecwalker
to dns/walker port and remove the first one.
Submitted by: Johan van Selst <johans(at)stack.nl>
- Depends on Net::DNS::SEC as well as Net::DNS
- Recent versions include a PGP signature
- MASTER_SITES changed
- Grant a port maintainership to submitter
PR: ports/74995
Submitted by: Johan van Selst <johans(at)stack.nl>
BUG FIXES:
- Bug #90: handle \000 in TXT records correctly
- Fixed undefined behavior in the use of vsnprintf when
logging messages.
PR: ports/74517
Submitted by: maintainer
