mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-29 13:38:26 +00:00
Code Issues Releases Wiki Activity
21,170 Commits 657 Branches 820 Tags
Commit Graph

133 Commits

Author SHA1 Message Date
Tatuya JINMEI 神明達哉
95c5f1d17b noticed the default max-cache-size [RT #17515] 2008-01-22 00:29:03 +00:00
Michael Graff
b239c8294a commit lruttl to the mainline. A tag was set called skan_lruttl-mainline-base, and I will tag this as skan_lruttl-mainline-merge after this commit 2007-10-19 17:15:53 +00:00
Mark Andrews
ca84283333 2244. [func] Allow the check of nameserver names against the 
SOA MNAME field to be disabled by specifying
                        'notify-to-soa yes;'.  [RT #17073]
 2007-09-18 00:22:31 +00:00
Evan Hunt
d468b1b7b2 Fix compiler warnings on SCO OSr5 2007-09-13 04:45:18 +00:00
Automatic Updater
ec5347e2c7 update copyright notice 2007-06-18 23:47:57 +00:00
Mark Andrews
7643153c58 spelling s/is/in/ 2007-06-17 23:52:28 +00:00
Automatic Updater
858ad8db23 update copyright notice 2007-03-29 23:47:04 +00:00
Mark Andrews
819b98479e 2165. [func] Allow the destination address of a query to determine 
if we will answer the query or recurse.
                        allow-query-on, allow-recursion-on and
                        allow-query-cache-on. [RT #16291]
 2007-03-29 06:36:31 +00:00
Mark Andrews
a45a6ea2b0 2035. [func] Make falling back to TCP on UDP refresh failure 
optional. Default "try-tcp-refresh yes;" for BIND 8
                        compatibility. [RT #16123]
 2006-06-04 23:17:07 +00:00
Mark Andrews
6412902ffc 2015. [cleanup] use-additional-cache is now acache-enable for 
consistancy.  Default acache-enable off in BIND 9.4
                        as it requires memory usage to be configured.
                        It may be enabled by default in BIND 9.5 once we
                        have more experience with it.
 2006-05-03 01:54:54 +00:00
Mark Andrews
cfe92110ce 2007. [func] It is now possible to explicitly enable DNSSEC 
validation.  default dnssec-validation no; to
                        be changed to yes in 9.5.0.  [RT #15674]
 2006-03-09 23:21:54 +00:00
Mark Andrews
fe6f384b2e 2006. [security] Allow-query-cache and allow-recursion now default 
to the builtin acls "localnets" and "localhost".

                        This is being done to make caching servers less
                        attractive as reflective amplifying targets for
                        spoofed traffic.  This still leave authoritative
                        servers exposed.

                        The best fix is for full BCP 38 deployment to
                        remove spoofed traffic.
 2006-03-09 03:30:18 +00:00
Mark Andrews
59d84d1b07 2001. [func] Check the KSK flag when updating a secure dynamic zone. 
New zone option "update-check-ksk yes;".  [RT #15817]
 2006-03-06 01:27:52 +00:00
Mark Andrews
d76ed813a5 1999. [func] Implement "rrset-order fixed". [RT #13662] 2006-03-03 00:43:35 +00:00
Mark Andrews
45e1bd6358 1991. [cleanup] The configuration data, once read, should be treated 
as readonly.  Expand the use of const to enforce this
                        at compile time. [RT #15813]
 2006-02-28 02:39:52 +00:00
Mark Andrews
c6d4f78152 1973. [func] TSIG HMACSHA1, HMACSHA224, HMACSHA256, HMACSHA384 and 
HMACSHA512 support. [RT #13606]
 2006-01-27 02:35:15 +00:00
Mark Andrews
dc6da18ccb 1964. [func] Seperate out MX and SRV to CNAME checks. [RT #15723] 2006-01-05 23:45:34 +00:00
Mark Andrews
a1bc941093 1959. [func] Control the zeroing of the negative response TTL to 
a soa query.  Defaults "zero-no-soa-ttl yes;" and
                        "zero-no-soa-ttl-cache no;". [RT #15460]
 2006-01-05 02:19:02 +00:00
Mark Andrews
08c9026166 1953. [func] Named now falls back to advertising EDNS with a 
512 byte receive buffer if the initial EDNS queries
                        fail.  [RT #14852]

1952.   [func]          The maximum EDNS UDP response named will send can
                        now be set in named.conf (max-udp-size).  This is
                        independent of the advertised receive buffer
                        (edns-udp-size). [RT #14852]
 2006-01-05 00:01:46 +00:00
Mark Andrews
acb4f52369 update copyright notice 2006-01-04 23:50:24 +00:00
Mark Andrews
fabf2ee6b0 1947. [func] It is now possible to configure named to accept 
expired RRSIGs.  Default "dnssec-accept-expired no;".
                        Setting "dnssec-accept-expired yes;" leaves named
                        vulnerable to replay attacks.  [RT #14685]
 2006-01-04 02:35:49 +00:00
Mark Andrews
2674e1a455 1940. [bug] Fixed a number of error conditions reported by 
Coverity.
 2005-11-30 03:33:49 +00:00
Mark Andrews
676619a22f win32 fixes 2005-09-05 02:54:38 +00:00
Mark Andrews
2c15fcdeac seperate out sibling glue checks 2005-08-24 23:54:04 +00:00
Mark Andrews
4e1d3e67cd 1914. [bug] Strings returned from cfg_obj_asstring() should be 
treated as read-only.  The prototype for
                        cfg_obj_asstring() has been updated to reflect this.
                        [RT #15256]
 2005-08-23 02:36:11 +00:00
Mark Andrews
fd780f3d47 1891. [func] Limit the number of recursive clients that can be 
waiting for a single query (<qname,qtype,qclass>) to
                        resolve.  New options clients-per-query and
                        max-clients-per-query.
 2005-06-27 00:15:45 +00:00
Mark Andrews
c5223c9cb7 1862. [func] Add additional zone data constancy checks. 
named-checkzone has extended checking of NS, MX and
                        SRV record and the hosts they reference.
                        named has extended post zone load checks.
                        New zone options: check-mx and integrity-check.
                        [RT #4940]
 2005-05-19 04:59:05 +00:00
Rob Austein
ab023a6556 1851. [doc] Doxygen comment markup. [RT #11398] 2005-04-27 04:57:32 +00:00
Mark Andrews
48f929d315 1792. [func] New zone option "notify-delay". Specify a minimum 
delay between sets of NOTIFY messages.
 2005-01-11 23:10:06 +00:00
Mark Andrews
2f4ffd7f55 update copyrights 2005-01-10 23:43:27 +00:00
Mark Andrews
508f61f8d6 1794. [func] Named and named-checkzone can now both check for 
non-terminal wildcard records.
 2005-01-09 23:40:04 +00:00
Tatuya JINMEI 神明達哉
d0eb2cc33c 1526. [func] Implemented "additional section caching (or acache)", 
an internal cache framework for additional section
			content to improve response performance.  Several
			configuration options were provided to control the
			behavior.
 2004-12-21 10:45:20 +00:00
Mark Andrews
3c20ae7638 1737. [bug] named failed if more that 16 masters were specified. 
[RT #12627]
 2004-10-05 02:47:50 +00:00
Mark Andrews
5639d60b40 1702. [bug] also-notify should not be applied to builtin zones. 
[RT #12323]
 2004-08-28 05:42:12 +00:00
Mark Andrews
1cf54d1966 1612. [bug] check-names at the option/view level could trigger 
an INSIST. [RT# 11116]
 2004-04-20 14:11:47 +00:00
Mark Andrews
ea38808b7d 1614. [port] win32: silence resource limit messages. [RT# 11101] 2004-04-19 23:09:51 +00:00
Mark Andrews
28b863e609 pullup fixed from 9.3 2004-03-16 05:52:24 +00:00
Mark Andrews
50105afc55 1589. [func] DNSSEC lookaside validation. 
enable-dnssec -> dnssec-enable
 2004-03-10 02:19:58 +00:00
Mark Andrews
dafcb997e3 update copyright notice 2004-03-05 05:14:21 +00:00
Mark Andrews
2047977ce2 1586. [func] "check-names" is now implemented. 2004-02-27 20:41:51 +00:00
Mark Andrews
89783da064 1581. [func] Disable DNSSEC support by default. To enable 
DNSSEC specify "enable-dnssec yes;" in named.conf.
 2004-02-17 03:40:23 +00:00
Mark Andrews
1a4d687359 1468. [func] Internal zones are nolonger for 'rndc status'. 
[RT #4706]
 2003-04-17 12:11:39 +00:00
Mark Andrews
b500de3be9 alt-transfer-source-v4 -> alt-transfer-source 2003-02-27 05:12:47 +00:00
Mark Andrews
476386968b 1446. [func] Implemented undocumented alternate transfer sources 
from BIND 8.  See use-alt-transfer-source,
                        alt-transfer-source-v4 and alt-transfer-source-v6.

                        SECURITY: use-alt-transfer-source is ENABLED unless
                        you are using views.  This may caues a security risk
                        resulting in accidental disclosure of wrong zone
                        content if the master supplying different source
                        content based on IP address.  If you are not certian
                        ISC recommends setting use-alt-transfer-source no;
developer: marka
reviewer: explorer
 2003-02-26 23:29:00 +00:00
Mark Andrews
888bb8bf68 1443. [func] Masters lists can now be specified and referenced 
in zone masters clauses and other masters lists.
developer: marka
reviewer: explorer
 2003-02-26 06:04:03 +00:00
Mark Andrews
e2fb08b85d 1432. [func] The advertised EDNS UDP buffer size can now be set 
via named.conf (edns-udp-size).
developer: marka
reviewer: explorer
 2003-02-26 02:04:00 +00:00
Mark Andrews
a1301ef891 undo (wrong branch) 2003-02-04 06:10:09 +00:00
Mark Andrews
ab4bec8504 checkpoint 2003-02-04 05:44:32 +00:00
Mark Andrews
9bd478a5e6 1417. [func] ID.SERVER/CHAOS is now a built in zone. 
See "server-id" for how to configure.
 2003-01-20 05:46:11 +00:00
Mark Andrews
49a940dc68 1402. [cleanup] A6 has been moved to experimental and is no longer 
fully supported.
developer: jinmei
reviewer: marka
 2002-11-27 09:52:58 +00:00