mir/bind
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/bind9 synced 2025-08-30 14:07:59 +00:00
Code Issues Releases Wiki Activity
29,805 Commits 659 Branches 820 Tags
8b5aa19ed9f6831f040b22f9982c3ba2a6bbe40b
Commit Graph

1114 Commits

Author SHA1 Message Date
Mark Andrews
a9365554b6 2022. [bug] If dnssec validation is disabled only assert CD if 
CD was requested. [RT #16037]

2021.   [bug]           dnssec-enable no; triggered a REQUIRE. [RT #16037]
 2006-05-18 02:00:11 +00:00
Mark Andrews
6412902ffc 2015. [cleanup] use-additional-cache is now acache-enable for 
consistancy.  Default acache-enable off in BIND 9.4
                        as it requires memory usage to be configured.
                        It may be enabled by default in BIND 9.5 once we
                        have more experience with it.
 2006-05-03 01:54:54 +00:00
Mark Andrews
d2ef84e07b 2008. [func] It is now posssible to enable/disable DNSSEC 
validation from rndc.  This is useful for the
                        mobile hosts where the current connection point
                        breaks DNSSEC (firewall/proxy).  [RT #15592]

                                rndc validation newstate [view]
 2006-03-09 23:39:00 +00:00
Mark Andrews
cfe92110ce 2007. [func] It is now possible to explicitly enable DNSSEC 
validation.  default dnssec-validation no; to
                        be changed to yes in 9.5.0.  [RT #15674]
 2006-03-09 23:21:54 +00:00
Mark Andrews
fe6f384b2e 2006. [security] Allow-query-cache and allow-recursion now default 
to the builtin acls "localnets" and "localhost".

                        This is being done to make caching servers less
                        attractive as reflective amplifying targets for
                        spoofed traffic.  This still leave authoritative
                        servers exposed.

                        The best fix is for full BCP 38 deployment to
                        remove spoofed traffic.
 2006-03-09 03:30:18 +00:00
Mark Andrews
45e1bd6358 1991. [cleanup] The configuration data, once read, should be treated 
as readonly.  Expand the use of const to enforce this
                        at compile time. [RT #15813]
 2006-02-28 02:39:52 +00:00
Mark Andrews
95b484c958 fix minor typos 2006-02-26 22:57:18 +00:00
Mark Andrews
d00e58d481 1986. [func] Report when a zone is removed. [RT #15849] 2006-02-21 23:12:27 +00:00
Mark Andrews
7d4a465de0 1597. [func] Allow notify-source and query-source to be specified 
on a per server basis similar to transfer-source.
 2006-02-17 00:24:21 +00:00
Mark Andrews
a1bc941093 1959. [func] Control the zeroing of the negative response TTL to 
a soa query.  Defaults "zero-no-soa-ttl yes;" and
                        "zero-no-soa-ttl-cache no;". [RT #15460]
 2006-01-05 02:19:02 +00:00
Mark Andrews
08c9026166 1953. [func] Named now falls back to advertising EDNS with a 
512 byte receive buffer if the initial EDNS queries
                        fail.  [RT #14852]

1952.   [func]          The maximum EDNS UDP response named will send can
                        now be set in named.conf (max-udp-size).  This is
                        independent of the advertised receive buffer
                        (edns-udp-size). [RT #14852]
 2006-01-05 00:01:46 +00:00
Mark Andrews
acb4f52369 update copyright notice 2006-01-04 23:50:24 +00:00
Mark Andrews
fabf2ee6b0 1947. [func] It is now possible to configure named to accept 
expired RRSIGs.  Default "dnssec-accept-expired no;".
                        Setting "dnssec-accept-expired yes;" leaves named
                        vulnerable to replay attacks.  [RT #14685]
 2006-01-04 02:35:49 +00:00
Mark Andrews
2674e1a455 1940. [bug] Fixed a number of error conditions reported by 
Coverity.
 2005-11-30 03:33:49 +00:00
Mark Andrews
03e200df5d 1913. [func] Integrate contibuted DLZ code into named. [RT #11382] 2005-09-05 00:12:29 +00:00
Mark Andrews
4e1d3e67cd 1914. [bug] Strings returned from cfg_obj_asstring() should be 
treated as read-only.  The prototype for
                        cfg_obj_asstring() has been updated to reflect this.
                        [RT #15256]
 2005-08-23 02:36:11 +00:00
Mark Andrews
6b79e960e6 1913. [func] Automatic empty zone creation for D.F.IP6.ARPA and 
friends.  Note: RFC 1918 zones are not yet covered by
                        this but are likely to be in a future release.

                        New options: empty-server, empty-contact,
                        empty-zones-enable and disable-empty-zone.
 2005-08-18 00:57:31 +00:00
Mark Andrews
261a6a1f7d 1911. [func] Attempt to make the amount of work performed in a 
iteration self tuning.  The covers nodes clean from
                        the cache per iteration, nodes written to disk when
                        rewriting a master file and nodes destroyed per
                        iteration when destroying a zone or a cache.
                        [RT #14996]
 2005-08-15 01:21:07 +00:00
Mark Andrews
8abe06b25d 1905. [bug] Recursive clients soft quota support wasn't working 
as expected. [RT #15103]
 2005-07-27 02:29:01 +00:00
Mark Andrews
fd780f3d47 1891. [func] Limit the number of recursive clients that can be 
waiting for a single query (<qname,qtype,qclass>) to
                        resolve.  New options clients-per-query and
                        max-clients-per-query.
 2005-06-27 00:15:45 +00:00
Mark Andrews
16b9ee24b9 1857. [bug] named could trigger a INSIST() if reconfigured / 
reloaded too fast.  [RT #14673]
 2005-06-07 01:52:51 +00:00
Mark Andrews
1c153afce5 1868. [func] edns-udp-size can now be overridden on a per 
server basis. [RT #14851]
 2005-06-07 00:27:34 +00:00
Mark Andrews
2e740e169d further changes for 
1848.   [bug]           Improve SMF integration. [RT #13238]
 2005-04-29 00:36:16 +00:00
Rob Austein
ab023a6556 1851. [doc] Doxygen comment markup. [RT #11398] 2005-04-27 04:57:32 +00:00
Mark Andrews
f754fa97bc 1848. [bug] Improve SMF integration. [RT #13238] 2005-04-05 00:58:16 +00:00
Mark Andrews
b326d7e3a3 1795. [bug] "rndc dumpb" was not fully documented. Minor 
formating issues with "rndc dumpdb -all".  [RT #13396]
 2005-03-14 23:55:57 +00:00
Mark Andrews
4844ed026a 1798. [func] The server syntax has been extended to support a 
range of servers.  [RT #11132]
 2005-01-17 00:46:05 +00:00
Mark Andrews
7502c66006 1796. [func] "rndc freeze/thaw" now freezes/thaws all zones. 2005-01-14 03:28:09 +00:00
Mark Andrews
abeb45c775 update copyrights 2005-01-12 01:56:12 +00:00
Mark Andrews
ad5bc22a81 1797. [func] named-checkconf now check acls to verify that they 
only refer to existing acls. [RT #13101]
 2005-01-11 03:46:11 +00:00
Tatuya JINMEI 神明達哉
d0eb2cc33c 1526. [func] Implemented "additional section caching (or acache)", 
an internal cache framework for additional section
			content to improve response performance.  Several
			configuration options were provided to control the
			behavior.
 2004-12-21 10:45:20 +00:00
Mark Andrews
892c9a8817 1759. [bug] Named failed to startup if the OS supported IPv6 
but had no IPv6 interfaces configured. [RT #12942]
 2004-11-10 22:14:28 +00:00
Mark Andrews
49210da3fb 1676. [func] New option "allow-query-cache". This lets 
allow-query be used to specify the default zone
                        access level rather than having to have every
                        zone override the global value.  allow-query-cache
                        can be set at both the options and view levels.
                        If allow-query-cache is not set allow-query applies.
 2004-10-21 00:58:33 +00:00
Mark Andrews
2a71a21346 1710. [func] 'rndc notify zone [class [view]]' resend the NOTIFY 
messages for the specified zone. [RT #9479]
 2004-10-11 05:30:20 +00:00
Mark Andrews
31affb2ca3 1732. [bug] 'rrset-order name "*"' wasn't being applied to ".". 
[RT #12467]
 2004-10-05 04:38:17 +00:00
Mark Andrews
2c329da87c 1733. [bug] Return non-zero exit status on initial load failure. 
[RT #12658]
 2004-09-29 06:45:38 +00:00
Mark Andrews
7389e8330d 1666. [bug] The optional port on hostnames in dual-stack-servers 
was being ignored.

1665.   [func]          rndc now allows addresses to be set in the
                        server clauses.
 2004-06-18 04:38:47 +00:00
Mark Andrews
c315e5cfea 1648. [func] Update dnssec-lookaside named.conf syntax to support 
multiple dnssec-lookaside namespaces (not yet
                        implemented).
 2004-06-04 02:31:43 +00:00
Mark Andrews
97f1498dda move cleanup of in_roothints earlier to make it easier to detect reference 
count mismatches.
 2004-05-14 00:51:52 +00:00
Mark Andrews
1cf54d1966 1612. [bug] check-names at the option/view level could trigger 
an INSIST. [RT# 11116]
 2004-04-20 14:11:47 +00:00
Mark Andrews
349f684cf1 1619. [bug] Missing ISC_LIST_UNLINK in end_reserved_dispatches(). 
[RT# 11118]
 2004-04-20 07:16:23 +00:00
Mark Andrews
5ed76fa7ea 1617. [port] win32: VC++ 6.0 support. 2004-04-19 04:16:55 +00:00
Mark Andrews
8d414d1559 1600. [bug] Duplicate zone pre-load checks were not case 
insensitive.

1599.   [bug]           Fix memory leak on error path when checking named.conf.

1598.   [func]          Specify that certain parts of the namespace must
                        be secure (dnssec-must-be-secure).
 2004-04-15 23:40:27 +00:00
Mark Andrews
80cc19dc26 1601. [bug] Silence spurious warning 'both "recursion no;" and 
"allow-recursion" active' warning from view "_bind".
                        [RT# 10920]
 2004-04-10 05:03:27 +00:00
Mark Andrews
0822cc5065 1594. [bug] 'rndc dumpdb' could prevent named from answering 
queries while the dump was in progress.  [RT #10565]
 2004-04-08 00:10:42 +00:00
Mark Andrews
6e423af8f0 remove unused variables: dispatchv4, dispatchv6. 2004-03-14 23:00:47 +00:00
Mark Andrews
a3a09ca249 1592. [bug] configure_view() could leak a dispatch. 2004-03-14 22:53:39 +00:00
Mark Andrews
50105afc55 1589. [func] DNSSEC lookaside validation. 
enable-dnssec -> dnssec-enable
 2004-03-10 02:19:58 +00:00
Mark Andrews
dafcb997e3 update copyright notice 2004-03-05 05:14:21 +00:00
Mark Andrews
7ad4d54f29 1537. [func] New option "querylog". If set specify whether query 
logging is to be enabled or disabled at startup.
 2004-03-02 01:15:00 +00:00