mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-29 05:28:00 +00:00
Code Issues Releases Wiki Activity
14,836 Commits 656 Branches 820 Tags
Commit Graph

501 Commits

Author SHA1 Message Date
Tatuya JINMEI 神明達哉
1c3ed2a83d 2320. [func] Make statistics couters thread-safe for platforms 
that support certain atomic operations. [RT #17466]
 2008-01-24 02:00:44 +00:00
Tatuya JINMEI 神明達哉
95c5f1d17b noticed the default max-cache-size [RT #17515] 2008-01-22 00:29:03 +00:00
Automatic Updater
2f012d936b update copyright notice 2008-01-18 23:46:58 +00:00
Tatuya JINMEI 神明達哉
bfcc5ae79a 2294. [func] Allow the experimental statistics channels to have 
multiple connections and ACL.
			Note: the stats-server and stats-server-v6 options
			available in the previous beta releases are replaced
			with the generic statistics-channels statment.
 2008-01-17 00:15:14 +00:00
Automatic Updater
72d6be2c11 update copyright notice 2008-01-09 23:47:00 +00:00
Mark Andrews
f61a7c87bf 2292. [bug] Log if the working directory is not writable. 
[RT #17312]

2291.   [bug]           PR_SET_DUMPABLE may be set too late.  Also report
                        failure to set PR_SET_DUMPABLE. [RT #17312]
 2008-01-09 04:48:33 +00:00
Mark Andrews
8c850a29ed 2280. [func] Allow the experimental http server to be reached 
over IPv6 as well as IPv4. [RT #17332]
 2007-12-14 04:01:20 +00:00
Mark Andrews
c4dc5966e0 2268. [bug] 0.IN-ADDR.ARPA was missing from the empty zones 
list.
 2007-12-02 18:56:03 +00:00
Mark Andrews
544d0efa38 2264. [bug] Server prefix length was being ignored. [RT #17308] 2007-11-26 02:43:53 +00:00
Evan Hunt
873a2046fb Fix error in sortlist code -- was using the wrong nest level, which 
caused the response-order ACL to be merged into a single iptable and
lose its ordering. [rt17216]
 2007-10-18 01:37:49 +00:00
Mark Andrews
a1e2170ad5 2250. [func] New flag 'memstatistics' to state whether the 
memory statistics file should be written or not.
                        Additionally named's -m option will cause the
                        statistics file to be written. [RT #17113]
 2007-09-26 03:22:45 +00:00
Evan Hunt
c7e266b7e5 Add support for O(1) ACL processing, based on radix tree code originally 
written by kevin brintnall. [RT #16288]
 2007-09-12 01:09:08 +00:00
Mark Andrews
69826a6a2f 2206. [security] "allow-query-cache" and "allow-recursion" now 
cross inherit from each other.

                        If allow-query-cache is not set in named.conf then
                        allow-recursion is used if set, otherwise allow-query
                        is used if set, otherwise the default (localnets;
                        localhost;) is used.

                        If allow-recursion is not set in named.conf then
                        allow-query-cache is used if set, otherwise allow-query
                        is used if set, otherwise the default (localnets;
                        localhost;) is used.

                        [RT #16987]
 2007-07-09 02:14:39 +00:00
Mark Andrews
fd23bc509d 2204 [bug] "rndc flushanme name unknown-view" caused named 
to crash. [RT #16984]
 2007-07-02 01:00:35 +00:00
Mark Andrews
afd002e89a 2202. [security] The default acls for allow-query-cache and 
allow-recursion were not being applied. [RT #16960]
 2007-06-25 02:37:25 +00:00
Automatic Updater
ec5347e2c7 update copyright notice 2007-06-18 23:47:57 +00:00
Mark Andrews
40aadb6a14 2179. [func] 'rndc command zone' will now find 'zone' if it is 
unique to all the views. [RT #16821]
 2007-05-15 02:38:34 +00:00
Mark Andrews
65b26a4dc8 2178. [bug] 'rndc reload' of a slave or stub zone resulted in 
a reference leak. [RT #16867]
 2007-05-15 02:28:27 +00:00
Mark Andrews
c1297b6025 2167. [bug] When re-using a automatic zone named failed to 
attach it to the new view. [RT #16786]
 2007-04-24 06:55:32 +00:00
Mark Andrews
0a19afabe8 s/view->name/viewname/ 2007-04-02 23:46:47 +00:00
Mark Andrews
261a8854cc 2161. [bug] Fix which log messages are emitted for 'rndc flush'. 
[RT #16698]
 2007-04-02 23:17:52 +00:00
Mark Andrews
819b98479e 2165. [func] Allow the destination address of a query to determine 
if we will answer the query or recurse.
                        allow-query-on, allow-recursion-on and
                        allow-query-cache-on. [RT #16291]
 2007-03-29 06:36:31 +00:00
Mark Andrews
b5f690e161 2161. [bug] Fix which log messages are emitted for 'rndc flush'. 
[RT #16698]
 2007-03-13 04:30:17 +00:00
Mark Andrews
bde20a0436 2148. [func] Add positive logging for rndc commands. [RT #14623] 2007-02-26 02:19:45 +00:00
Mark Andrews
96ea716328 2134. [func] Additional statistics support. [RT #16666] 2007-02-13 02:49:08 +00:00
Mark Andrews
281bab0f36 2129. [func] Provide a pool of UDP sockets for queries to be 
made over. See use-queryport-pool, queryport-pool-ports
                        and queryport-pool-updateinterval.  [RT #16415]
 2007-02-02 02:18:06 +00:00
Mark Andrews
00499ae65e update copyright notice 2007-01-12 00:14:51 +00:00
Michael Graff
de4f679a17 revert changes accidently committed to mainline 2007-01-10 18:56:20 +00:00
Mark Andrews
edf8e79280 update copyright notice 2007-01-04 00:01:13 +00:00
Michael Graff
68e2686f83 hook in socket and task info 2007-01-03 21:28:24 +00:00
Michael Graff
b015e6b3e1 make changes on HEAD, not on a branch. 2006-12-22 03:07:57 +00:00
Mark Andrews
186e7f37c9 2122. [func] Experimental http server and statistics support 
for named via xml.
 2006-12-21 06:03:37 +00:00
Mark Andrews
58ea8fb1df 2112. [security] Warn if weak RSA exponent is used. [RT #16460] 2006-12-07 05:05:10 +00:00
Mark Andrews
1cbb3a4df3 2106. [func] 'rndc status' now reports named's version. [RT #16426] 2006-12-04 02:38:22 +00:00
Mark Andrews
289ae548d5 2105. [func] GSS-TSIG support (RFC 3645). 2006-12-04 01:54:53 +00:00
Mark Andrews
39ef7dddef 2060. [bug] Enabling DLZ support could leave views partially 
configured. [RT #16295]
 2006-07-24 05:51:22 +00:00
Mark Andrews
c79e85f7d7 2031. [bug] Emit a error message when "rndc refresh" is called on 
a non slave/stub zone. [RT # 16073]
 2006-05-24 04:23:15 +00:00
Mark Andrews
a9365554b6 2022. [bug] If dnssec validation is disabled only assert CD if 
CD was requested. [RT #16037]

2021.   [bug]           dnssec-enable no; triggered a REQUIRE. [RT #16037]
 2006-05-18 02:00:11 +00:00
Mark Andrews
6412902ffc 2015. [cleanup] use-additional-cache is now acache-enable for 
consistancy.  Default acache-enable off in BIND 9.4
                        as it requires memory usage to be configured.
                        It may be enabled by default in BIND 9.5 once we
                        have more experience with it.
 2006-05-03 01:54:54 +00:00
Mark Andrews
d2ef84e07b 2008. [func] It is now posssible to enable/disable DNSSEC 
validation from rndc.  This is useful for the
                        mobile hosts where the current connection point
                        breaks DNSSEC (firewall/proxy).  [RT #15592]

                                rndc validation newstate [view]
 2006-03-09 23:39:00 +00:00
Mark Andrews
cfe92110ce 2007. [func] It is now possible to explicitly enable DNSSEC 
validation.  default dnssec-validation no; to
                        be changed to yes in 9.5.0.  [RT #15674]
 2006-03-09 23:21:54 +00:00
Mark Andrews
fe6f384b2e 2006. [security] Allow-query-cache and allow-recursion now default 
to the builtin acls "localnets" and "localhost".

                        This is being done to make caching servers less
                        attractive as reflective amplifying targets for
                        spoofed traffic.  This still leave authoritative
                        servers exposed.

                        The best fix is for full BCP 38 deployment to
                        remove spoofed traffic.
 2006-03-09 03:30:18 +00:00
Mark Andrews
45e1bd6358 1991. [cleanup] The configuration data, once read, should be treated 
as readonly.  Expand the use of const to enforce this
                        at compile time. [RT #15813]
 2006-02-28 02:39:52 +00:00
Mark Andrews
95b484c958 fix minor typos 2006-02-26 22:57:18 +00:00
Mark Andrews
d00e58d481 1986. [func] Report when a zone is removed. [RT #15849] 2006-02-21 23:12:27 +00:00
Mark Andrews
7d4a465de0 1597. [func] Allow notify-source and query-source to be specified 
on a per server basis similar to transfer-source.
 2006-02-17 00:24:21 +00:00
Mark Andrews
a1bc941093 1959. [func] Control the zeroing of the negative response TTL to 
a soa query.  Defaults "zero-no-soa-ttl yes;" and
                        "zero-no-soa-ttl-cache no;". [RT #15460]
 2006-01-05 02:19:02 +00:00
Mark Andrews
08c9026166 1953. [func] Named now falls back to advertising EDNS with a 
512 byte receive buffer if the initial EDNS queries
                        fail.  [RT #14852]

1952.   [func]          The maximum EDNS UDP response named will send can
                        now be set in named.conf (max-udp-size).  This is
                        independent of the advertised receive buffer
                        (edns-udp-size). [RT #14852]
 2006-01-05 00:01:46 +00:00
Mark Andrews
acb4f52369 update copyright notice 2006-01-04 23:50:24 +00:00
Mark Andrews
fabf2ee6b0 1947. [func] It is now possible to configure named to accept 
expired RRSIGs.  Default "dnssec-accept-expired no;".
                        Setting "dnssec-accept-expired yes;" leaves named
                        vulnerable to replay attacks.  [RT #14685]
 2006-01-04 02:35:49 +00:00