| There is a PORTS FREEZE in effect! |
|
A ports freeze
means that commits will be few and far between and only by approval.
|
| non port: dns/bind95/Makefile |
|
CVSWeb
|
Number of commits found: 7 | |
Sat, 2 Aug 2008
|
[ 08:01 dougb ] 
1.83 dns/bind9/Makefile
1.88 dns/bind94/Makefile
1.90 dns/bind95/Makefile
1.45 dns/bind9/distinfo
1.48 dns/bind94/distinfo
1.50 dns/bind95/distinfo
Update to patchlevel 2 for all versions:
- performance improvement over the P1 releases, namely
+ significantly remedying the port allocation issues
+ allowing TCP queries and zone transfers while issuing as many
outstanding UDP queries as possible
+ additional security of port randomization at the same level as P1
- also includes fixes for several bugs in the 9.5.0 base code
|
|
Wed, 16 Jul 2008
|
[ 21:39 dougb ]
1.87 dns/bind94/Makefile
1.89 dns/bind95/Makefile
Add an OPTION to turn on the ability of dns/host/nslookup to do
DNSSEC validation.
This is off by default, so no PORTREVISION bump.
Submitted by: Andrei V. Lavreniyuk <andy.lavr@reactor-xg.kiev.ua>
|
|
Fri, 11 Jul 2008
|
[ 20:02 dougb ]
1.88 dns/bind95/Makefile
Strengthen the wording regarding the THREADS OPTION for <FreeBSD-7
|
|
Wed, 9 Jul 2008
|
[ 20:02 dougb ]
1.82 dns/bind9/Makefile
1.85 dns/bind94/Makefile
1.87 dns/bind95/Makefile
1.44 dns/bind9/distinfo
1.47 dns/bind94/distinfo
1.49 dns/bind95/distinfo
Upgrade to the -P1 versions of each port, which add stronger randomization
of the UDP query-source ports. The server will still use the same query
port for the life of the process, so users for whom the issue of cache
poisoning is highly significant may wish to periodically restart their
server using /etc/rc.d/named restart, or other suitable method.
In order to take advantage of this randomization users MUST have an
appropriate firewall configuration to allow UDP queries to be sent and
answers to be received on random ports; and users MUST NOT specify a
port number using the query-source[-v6] option.
The avoid-v[46]-udp-ports options exist for users who wish to eliminate
certain port numbers from being chosen by named for this purpose. See
the ARM Chatper 6 for more information.
(Only the first 15 lines of the commit message are shown above  )
|
|
Fri, 4 Jul 2008
|
[ 16:41 dougb ]
1.86 dns/bind95/Makefile
1.27 dns/bind95/pkg-plist
Make CONFLICTS a little cleaner
Add README.idnkit to PORTDOCS
|
|
Thu, 3 Jul 2008
|
[ 08:26 dougb ]
1.85 dns/bind95/Makefile
1.48 dns/bind95/distinfo
1.13 dns/bind95/pkg-descr
1.26 dns/bind95/pkg-plist
Update for 9.5.0
Some of the important features of BIND 9 are:
DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support, including working threads in this version
BIND 9.5 has a number of new features over previous versions, including:
GSS-TSIG support (RFC 3645), DHCID support
Experimental http server and statistics support for named via xml
More detailed statistics counters, compatible with the ones supported in BIND 8
Faster ACL processing
Efficient LRU cache cleaning mechanism.
NSID support (RFC 5001).
|
[ 07:12 dougb ]
1.84 dns/bind95/Makefile
1.47 dns/bind95/distinfo
1.12 dns/bind95/pkg-descr
1.5 dns/bind95/pkg-message
1.25 dns/bind95/pkg-plist
Forced commit to note that these files were repo-copied from dns/bind94
|
Number of commits found: 7 |
|
| Latest Vulnerabilities |
|
13 vulnerabilities affecting 33 ports have been reported in the past 14 days
|
* - modified, not new All vulnerabilities
|
|
