And while I'm here:
1. Download the PGP .sig file, in case the user wants to verify the package
2. Switch to PLIST_FILES for the one file this port installs
3. Replace the lone patch file with a ${SED} command
For those keeping score at home, that's 3 inodes gone with one commit! :)
Approved by: edwin (maintainer)
dns/walker is the same ports. And name 'walker' was
recognized as a better name. So we move dns/dnssecwalker
to dns/walker port and remove the first one.
Submitted by: Johan van Selst <johans(at)stack.nl>
- Depends on Net::DNS::SEC as well as Net::DNS
- Recent versions include a PGP signature
- MASTER_SITES changed
- Grant a port maintainership to submitter
PR: ports/74995
Submitted by: Johan van Selst <johans(at)stack.nl>
BUG FIXES:
- Bug #90: handle \000 in TXT records correctly
- Fixed undefined behavior in the use of vsnprintf when
logging messages.
PR: ports/74517
Submitted by: maintainer
I committed pre-improved version's PR. This is my mistake.
Pointed out by: Ralf van der Enden <tremere@cainites.net> (maintainer)
Pointy hat to: myself
PR: ports/73862
Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
types (including the DNSSEC types), and unknown types. It can be used for
queries, zone transfers, and dynamic updates. It includes a cache which can be
used by clients, and a minimal implementation of a server. It supports TSIG
authenticated messages, partial DNSSEC verification, and EDNS0.
dnsjava provides functionality above and beyond that of the InetAddress class.
Since it is written in pure Java, dnsjava is fully threadable, and in many
cases is faster than using InetAddress.
dnsjava provides both high and low level access to DNS. The high level
functions perform queries for records of a given name, type, and class, and
return an array of records. There is also a clone of InetAddress, which is even
simpler. A cache is used to reduce the number of DNS queries sent. The low
level functions allow direct manipulation of DNS messages and records, as well
as allowing additional resolver properties to be set.
WWW: http://www.xbill.org/dnsjava/
dnshijacker is a libnet/libpcap based packet sniffer & spoofer. a
versatile tool, dnshijacker supports tcpdump style filters that allow
you to specifically target victims. dns answers are forged based on
entries in a "fabrication table" or by simply forging one answer to all
requests. a print only mode is also supported, allowing one to simply
monitor dns traffic. dns hijacker is an excellent tool for network level
ad blocking / removal.
WWW: http://pedram.redhive.com/projects.php
PR: ports/72898
Submitted by: David Thiel <lx@redundancy.redundancy.org>
This version introduce random source ports to
reduce the risk of getting the cache poisoned.
Assign maintainership to submitter/author.
PR: ports/73420
Submitted by: Natanael Copa
DNSdoctor is intended to help solving misconfigurations or inconsistencies
of DNS zone files.
Features
* Powerful configuration file
* Does not depend on policies
* Fine grained test selection (by test, by categories, by zones)
* Full IPv6 support (connectivity and AAAA records)
* Supports several input/output interfaces such as CLI, GUI, CGI
* Dedicated mode for use inside shell scripts
* Batch mode available (ideal when dealing with several domains)
* Multi-threaded application in order to cut down checking time
* Extensible: new tests, new interfaces, new reports, ...
* Exception and cache mechanisms to simplify test writting
WWW: http://www.dnsdoctor.org/
PR: ports/71819
Submitted by: Janos Mohacsi <janos.mohacsi@niif.hu>
rbllookup is a small perl script which allow you to check given IP/host
name.
In this version you have statically inserted RBL servers, but code is based
on GPL source, so you can easy add more/replace/delete RBL servers by
editing rbllookup.pl file.
Also, author looking for support from programmers for ideas, codefix, new
features, switch to c/c++, gui version?
Author: Marcin Gondek <drixter@e-utp.net>
WWW: http://rbllookup.sourceforge.net
PR: ports/69160
Submitted by: Marcin Gondek <drixter@e-utp.net>
If you know new email addresses for the people involved, please send-pr it!
<mcsi@agava.com>: host relay.agava.net.ru[195.161.118.3] said: 550
<mcsi@agava.com>: User unknown in local recipient table (in reply to RCPT
TO command)
<woju@bbsmail.ntu.edu.tw> (expanded from <woju@bbsmail>): Host or domain name
not found. Name service error for name=bbsmail.ntu.edu.tw type=A: Host not
found
<esoha@attbi.com>: host gateway.attbi.com[204.127.198.6] said: 551 not our
customer (in reply to RCPT TO command)
<crow@nektor.hu>: host mail.kapu.hu[195.70.32.236] said: 550 unknown user (in
reply to RCPT TO command)
<cyrilm@tower.pp.ru>: host mail.tower.pp.ru[213.85.109.133] said: 550 unknown
user (in reply to RCPT TO command)
<ports@henrik-motakef.de>: Host or domain name not found. Name service error
for name=henrik-motakef.de type=A: Host not found
<jj@nttmcl.com>: host mx1.nttmcl.com[216.69.64.132] said: 550 5.2.1
<jj@nttmcl.com>... Mailbox disabled for this recipient (in reply to RCPT TO
command)
<koji@jet.es>: host mx.wanadoo.es[62.81.235.75] said: 550 Relay not permitted /
No such user (in reply to RCPT TO command)
<proot@iaces.com>: host horton.iaces.com[204.147.87.98] said: 550 5.1.1
<proot@iaces.com>... User unknown (in reply to RCPT TO command)
<roland.jesse@gmx.net>: host mx0.gmx.net[213.165.64.100] said: 550 5.1.1
{mx034} <roland.jesse@gmx.net>... User is unknown (in reply to RCPT TO
command)
<vess@slavof.net>: host mail.slavof.net[213.130.68.146] said: 550 5.7.1 Access
denied (in reply to MAIL FROM command)
<tuxsuximus@hotmail.com>: host mx3.hotmail.com[65.54.253.99] said: 550
Requested action not taken: mailbox unavailable (in reply to RCPT TO
command)
<zenin@archive.rhps.org>: host mail.rhps.org[66.250.128.137] said: 550 5.7.1
<zenin@archive.rhps.org>... Relaying denied (in reply to RCPT TO command)
administrators to quickly and easily make the most common DNS queries
without constructing lengthy dig commands.
PR: 73030
Submitted by: Jean-Yves Lefort <jylefort@brutele.be>
This port contains a subset of the DJBDNS package.
It includes several useful Domain Name System (DNS) tools:
- dnsfilter: a parallel IP-address-to-host-name converter
- dnsip, dnsipq, dnsname, dnstxt, and dnsmx: simple
command-line interfaces to DNS
- dnsq, dnstrace, dnstracesort: DNS debugging tools
Author: Daniel J. Bernstein <djb@cr.yp.to>
WWW: http://cr.yp.to/djbdns.html
to prevent cache poisoning.
PR: ports/72522
Submitted by: Natanael Copa <ncopa@users.sourceforge.net>
While I'm here:
- Rework installation mechanism - use do-install target
- Respect NOPORTDOCS
- Install samples into EXAMPLESDIR
- Use DOCSDIR and EXAMPLESDIR macros in pkg-plist
Update of dnrd. The TCP support is totally broken in previous
versions. Even if it should work in this verion it is
disabled by default. (The code was so ugly). It can be
enabled with WITH_TCP.
In this version it is also possible to disable the MASTER
file support. So dnrd can be a compiled as proxy only.
WITHOUT_MASTER.
PR: ports/71770
Submitted by: Natanael Copa <ncopa@users.sourceforge.net>
with the new PTHREAD_LIBS in 5.x and -CURRENT by
changing USE_INC_LIBTOOL_VER to USE_LIBTOOL_VER
(this also removes .la files)
- Bump PORTREVISION due to changed packages
Suggested by: marcus
Approved by: portmgr (marcus)
by upgrading to the latest version (0.60.5)
- Update its dependency devel/poslib to 1.0.5 (prerequisite)
PR: ports/72308
Submitted by: sergei
Approved by: portsmgr (will)
provide anything useful for newer systems, so remove them.
PR: ports/72118
Submitted by: Michel Lavondes <fox@vader.aacc.cc.md.us>
Approved by: portmgr (eik)
significant updates, not the least of which is the new and improved
DNSSEC code based on the latest standards (including DS).
Various updates to the port, including:
1. Download the PGP signature
2. If running on ${OSVERSION} >= 503000, configure with threads
3. Update pkg-descr re IPv6 RRs
4. Update pkg-message to reflect a world with 6-current
There is also a patch to correct a man page installation error.
This problem should be fixed in the next release.
Approved by: portmgr (marcus)
9.2.x in several important ways, including new DNSSEC support
and reportedly better performance.
It is anticipated that when this code base settles down that the
bind9 port could be removed.
NSD 2.1.2 release notes:
FEATURES:
- NSD now fully supports unknown record types using the notation
specified in RFC3597.
- Support for the following RR types has been added: WKS, X25, ISDN,
RT, NSAP, PX, NAPTR, KX, CERT, DNAME, and APL. DNAME special
processing is not supported.
BUG FIXES:
- Bug #84: NSD now uses SIGUSR1 instead of SIGILL to report stats.
- Bug #85: Support for WKS records.
- Bug #86: The characters "#%&^[]?" can now be used without backslash
in zone file domain names.
- Plugin callback return type fixed.
- The maximum message length for IPv6 UDP packets is now limited to
the IPv6 minimum MTU (1280) unless the IPV6_USE_MIN_MTU socket
option is supported.
PR: ports/69914
Submitted by: Olafur Osvaldsson <oli@isnic.is> (maintainer)
the libtoolX ports instead of the one included with each port. Ports that
set USE_LIBTOOL_VER=X will now use the ports version of libtool instead of
the included version. To restore previous behavior, use the new macro,
USE_INC_LIBTOOL_VER. Both macros accept the same argument: a libtool version.
For example, to use the ports version of libtool-1.5, add the following to
your Makefile:
USE_LIBTOOL_VER= 15
To use the included version of libtool with extra hacks provided by
libtool-1.5, add the following to your Makefile:
USE_INC_LIBTOOL_VER= 15
With this change, ports that had to add additional libtool hacks to prevent
.la files from being installed or to fix certain threading issues can now
delete those hacks (after appropriate testing, of course).
PR: 63944
Based on work by:eik and marcus
Approved by: ade (autotools maintainer)
Tested by: kris on pointyhat
Bound to be hidden problems: You bet
- Better handling of timeout (instead of a static value,
start with five seconds and double it each retry)
- Warnings are printed if you receive a different RR type
than the one you asked for (for example when you ask for
an A record and receive a CNAME)
- Fixed problems when records received in the authority
field are shorter than the domain the nameserver is
authoritative for.
- When compiled without IPv6 support on an IPv6 capable
machine the machine tried to query the IPv6 translated
IPv5 address anyway.
- -C caches hosts which haven't answered too.
One-Record-Per-File bases. Because of this, sheerdns is the simplest of any DNS
to configure, the easiest to update, and the most efficient for networks that
experience a lot of updates (for example master servers for dynamic IP address
ranges).
PR: ports/67241
Submitted by: <bkhl@elektrubadur.se>
port, but it's not clear what the purpose was.
The reason for removing it is compatibility with Harti's work on updating make.
This patch causes a "recursive assignment" error. Removing it causes no
difference in the building of the port, so away it goes.
PR: standards/57295
- Provide additional startup script for zoneserver(8) program
needed to run an authorative primary nameserver.
- Both these scripts pipe programs' output into logger(1) so
that maradns logs into syslog.
- Installs an example zonefile in maradns (csv1) format.
PR: 65624
Submitted by: Alex Kapranoff <kappa@vvs01.agava.net>
The only difference to the previous version (except for the version ID
sent in request packets), is the method used to declare errno.
For unknown reasons, this version is not available from all mirror sites
and binary packages seem to only be provided for 3.0.11b7. The problem
with that version was that it was used incorrectly in some Linksys WLAN
router which tended to spam DynDNS.org with bogus requests. DynDNS.org
ignores certain requests, when received with a version ID of 3.0.11b7,
though there's nothing wrong with that code when used correctly.
I had considered to just patch the version string in "configure", but
after some more thought I've now choosen to actually use the new dist
file and to remove the URL of the master site that doesn't offer the
newer version.
PR: 60940
Submitted by: Lynk <lynk@lynksys.net>
variable for replacing includes as well. Users who replaced the base
BIND and then attempted to compile other software with -D_REENTRANT
were having problems because netdb.h has a different definition for
h_errno.
The idea of replacing includes originated with users who wanted to
compile apps against the libbind installed by the port, however those
"power users" can either add the switch to replace includes, or modify
their own includes slightly to use the "safe" location for the port
include files (PREFIX/include/bind).
The PR mentions the problem, along with a cast of thousands. :)
Other tuneups for the port are just portlint appeasements.
PR: ports/64449
Submitted by: eik
Begin autotools sanitization sequence by requiring ports to explicitly
specify which version of {libtool,autoconf,automake} they need, erasing
the concept of a "system default".
For ports-in-waiting:
USE_LIBTOOL=YES -> USE_LIBTOOL_VER=13
USE_AUTOCONF=YES -> USE_AUTOCONF_VER=213
USE_AUTOMAKE=YES -> USE_AUTOMAKE_VER=14
Ports attempting to use the old style system after June 1st 2004 will be
sorely disappointed.
From: Roman Shterenzon <romanbsd@yahoo.com>
To: ports@freebsd.org
Subject: e-mail change
The email address roman@xpert.com is no longer valid.
Please update ports' maintainer to ports@oven.org.
Submitted by: Roman Shterenzon <romanbsd@yahoo.com>
Add distribution site grouping for all the patches [1].
PR: 56951 [1], 64062 [2].
Submitted by: Roman Neuhauser <neuhauser@bellavista.cz> [1],
Thomas Vogt <thomas@bsdunix.ch> [2]
