mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-31 14:35:26 +00:00
Code Issues Releases Wiki Activity
36,478 Commits 660 Branches 820 Tags
624bbf403c391ad27daacee4b31b51e0079e3db2
Commit Graph

2676 Commits

Author SHA1 Message Date
Mark Andrews
035992291c regen 2006-03-09 05:04:38 +00:00
Mark Andrews
fe6f384b2e 2006. [security] Allow-query-cache and allow-recursion now default 
to the builtin acls "localnets" and "localhost".

                        This is being done to make caching servers less
                        attractive as reflective amplifying targets for
                        spoofed traffic.  This still leave authoritative
                        servers exposed.

                        The best fix is for full BCP 38 deployment to
                        remove spoofed traffic.
 2006-03-09 03:30:18 +00:00
Mark Andrews
083a5588a3 regen 2006-03-06 02:23:19 +00:00
Mark Andrews
59d84d1b07 2001. [func] Check the KSK flag when updating a secure dynamic zone. 
New zone option "update-check-ksk yes;".  [RT #15817]
 2006-03-06 01:27:52 +00:00
Mark Andrews
20cacd1459 regen 2006-02-27 02:18:24 +00:00
Mark Andrews
95b484c958 fix minor typos 2006-02-26 22:57:18 +00:00
Mark Andrews
dca44b90c9 regen 2006-02-17 02:06:13 +00:00
Mark Andrews
7d4a465de0 1597. [func] Allow notify-source and query-source to be specified 
on a per server basis similar to transfer-source.
 2006-02-17 00:24:21 +00:00
Mark Andrews
7f723eabc5 regen 2006-02-16 04:58:21 +00:00
Mark Andrews
6e373c5025 1983. [func] Two new update policies. "selfsub" and "selfwild". 
[RT #12895]
 2006-02-16 01:34:24 +00:00
Mark Andrews
60ce71d2a5 regen 2006-02-07 05:52:46 +00:00
Mark Andrews
041bc4716f regen 2006-02-06 05:28:48 +00:00
Mark Andrews
fef3f65e38 regen 2006-02-06 03:36:54 +00:00
Mark Andrews
885c1096e0 regen 2006-01-30 02:27:04 +00:00
Mark Andrews
4e7d13747a delegation-only is valid for type forward 2006-01-30 00:38:14 +00:00
Mark Andrews
cf029c9369 1974. [doc] List each of the zone types and associated zone 
options seperately in the ARM.
 2006-01-30 00:26:37 +00:00
Mark Andrews
605b07cadd regen 2006-01-29 22:57:16 +00:00
Mark Andrews
726b472292 regen 2006-01-28 02:15:53 +00:00
Mark Andrews
7329012471 regen 2006-01-27 05:17:12 +00:00
Mark Andrews
c6d4f78152 1973. [func] TSIG HMACSHA1, HMACSHA224, HMACSHA256, HMACSHA384 and 
HMACSHA512 support. [RT #13606]
 2006-01-27 02:35:15 +00:00
Mark Andrews
557a0ad515 regen 2006-01-07 03:34:55 +00:00
Mark Andrews
3b4098640d regen 2006-01-06 01:55:39 +00:00
Mark Andrews
dc6da18ccb 1964. [func] Seperate out MX and SRV to CNAME checks. [RT #15723] 2006-01-05 23:45:34 +00:00
Mark Andrews
3e3eae9127 unbalanced <term>'s 2006-01-05 11:52:32 +00:00
Mark Andrews
a1bc941093 1959. [func] Control the zeroing of the negative response TTL to 
a soa query.  Defaults "zero-no-soa-ttl yes;" and
                        "zero-no-soa-ttl-cache no;". [RT #15460]
 2006-01-05 02:19:02 +00:00
Mark Andrews
08c9026166 1953. [func] Named now falls back to advertising EDNS with a 
512 byte receive buffer if the initial EDNS queries
                        fail.  [RT #14852]

1952.   [func]          The maximum EDNS UDP response named will send can
                        now be set in named.conf (max-udp-size).  This is
                        independent of the advertised receive buffer
                        (edns-udp-size). [RT #14852]
 2006-01-05 00:01:46 +00:00
Mark Andrews
acb4f52369 update copyright notice 2006-01-04 23:50:24 +00:00
Mark Andrews
2b66a51a7d 1950. [port] Solaris 2.5.1 and earlier cannot bind() then connect() 
a TCP socket. This prevents the source address being
                        set for TCP connections. [RT #15628]
 2006-01-04 04:15:55 +00:00
Mark Andrews
fabf2ee6b0 1947. [func] It is now possible to configure named to accept 
expired RRSIGs.  Default "dnssec-accept-expired no;".
                        Setting "dnssec-accept-expired yes;" leaves named
                        vulnerable to replay attacks.  [RT #14685]
 2006-01-04 02:35:49 +00:00
Mark Andrews
6101b9f0d9 regen 2005-12-05 02:08:05 +00:00
Mark Andrews
cf224bbf7b 1942. [bug] If the name of a DNSKEY match that of one in 
trusted-keys do not attempt to validate the DNSKEY
                        using the parents DS RRset. [RT #15649]
 2005-12-04 23:54:01 +00:00
Mark Andrews
dcb551033f regen 2005-11-03 02:45:42 +00:00
Mark Andrews
60ab03125c 1939. [bug] The resolver could dereference a null pointer after 
validation if all the queries have timed out.
                        [RT #15528]

1938.   [bug]           The validator was not correctly handling unsecure
                        negative responses at or below a SEP. [RT #15528]
 2005-11-03 00:51:55 +00:00
Mark Andrews
68abac6cb2 regen 2005-11-02 23:27:16 +00:00
Mark Andrews
185f838667 move clients-per-query to tuning 2005-11-02 22:26:48 +00:00
Mark Andrews
8c9957e632 regen 2005-10-26 06:23:18 +00:00
Mark Andrews
cedb0bd0c1 regen 2005-10-13 03:14:05 +00:00
Mark Andrews
7326ba2f54 regen 2005-10-10 03:12:14 +00:00
Mark Andrews
634b0f68d1 update forwarders description 2005-10-10 00:16:57 +00:00
Mark Andrews
1e5dad05ab regen 2005-09-13 03:22:27 +00:00
Mark Andrews
1f7013c1a1 spelling 2005-09-13 01:37:13 +00:00
Mark Andrews
057cafaa3d regen 2005-09-09 13:40:39 +00:00
Mark Andrews
90153b6536 regen 2005-08-30 04:18:58 +00:00
Mark Andrews
a057e8e33b regen 2005-08-25 03:12:48 +00:00
Mark Andrews
2c15fcdeac seperate out sibling glue checks 2005-08-24 23:54:04 +00:00
Mark Andrews
1586d8cbac regen 2005-08-19 03:52:27 +00:00
Mark Andrews
6b79e960e6 1913. [func] Automatic empty zone creation for D.F.IP6.ARPA and 
friends.  Note: RFC 1918 zones are not yet covered by
                        this but are likely to be in a future release.

                        New options: empty-server, empty-contact,
                        empty-zones-enable and disable-empty-zone.
 2005-08-18 00:57:31 +00:00
Mark Andrews
c8c33981e6 regen 2005-07-19 07:29:55 +00:00
Mark Andrews
5a4557e8de gregen 2005-07-19 06:12:24 +00:00
Mark Andrews
b5ad6dfea4 1903. [doc] Review ARM for BIND 9.4. 2005-07-19 04:55:25 +00:00