FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
bind99 BIND DNS suite with updated DNSSEC and DNS64
9.9.9P1 dns on this many watch lists=26 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: mat@FreeBSD.org search for ports maintained by this maintainer
Port Added: 28 Jan 2012 05:28:38
Also Listed In: net ipv6
License: ISCL
BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND
architecture.  Some of the important features of BIND 9 are:

DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
     Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
     Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
     e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support

BIND 9.9 includes a number of changes from BIND 9.8 and earlier releases,
including:
	NXDOMAIN redirection
	Improved startup and reconfiguration time, especially with large
		numbers of authoritative zones
	New "inline-signing" option, allows named to sign zones completely
		transparently, including static zones
	Many other new features, especially for DNSSEC

See the CHANGES file for more information on features.

WWW: https://www.isc.org/software/bind
SVNWeb : Homepage : PortsMon

To install the port: cd /usr/ports/dns/bind99/ && make install clean
To add the package: pkg install bind99

PKGNAME: bind99


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Library dependencies:
  1. libxml2.so : textproc/libxml2
  2. libidnkit.so : dns/idnkit
  3. libedit.so.0 : devel/libedit
  4. libiconv.so : converters/libiconv

This port is required by:

for Build for Run * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for bind99-9.9.9P1:
     DOCS=on: Build and/or install documentation
     FETCHLIMIT=off: Enable the query quotas for resolvers
     FILTER_AAAA=off: Enable filtering of AAAA records
     FIXED_RRSET=off: Enable fixed rrset ordering
     GOST=off: Enable GOST ciphers, needs SSL (see help on 8 and 9)
     IDN=on: International Domain Names support
     IPV6=on: IPv6 protocol support
     LARGE_FILE=off: 64-bit file support
     LINKS=off: Create conf file symlinks in /usr/local
     MINCACHE=off: Use the mincachettl patch
     NEWSTATS=off: Enable alternate xml statistics channel format
     PORTREVISION=off: Show PORTREVISION in the version string
     PYTHON=off: Build with Python utilities
     QUERYTRACE=off: Enable the very verbose query tracelogging
     REPLACE_BASE=off: EOL, no longer supported
     RPZ_NSDNAME=off: Enable RPZ NSDNAME policy records
     RPZ_NSIP=off: Enable RPZ NSIP trigger rules
     RPZ_PATCH=off: RPZ improvements
     RRL=on: Response Rate Limiting
     SIGCHASE=on: dig/host/nslookup will do DNSSEC validation
     SSL=on: Build with OpenSSL (Required for DNSSEC)
     START_LATE=off: Start BIND late in the boot process
     THREADS=on: Threading support
====> Dynamically Loadable Zones
     DLZ_POSTGRESQL=off: DLZ Postgres driver
     DLZ_MYSQL=off: DLZ MySQL driver (no threading)
     DLZ_BDB=off: DLZ BDB driver
     DLZ_LDAP=off: DLZ LDAP driver
     DLZ_FILESYSTEM=on: DLZ filesystem driver
     DLZ_STUB=off: DLZ stub driver
====> GSSAPI Security API support: you have to select exactly one of them
     GSSAPI_BASE=off: GSSAPI Security API support (Heimdal in base)
     GSSAPI_HEIMDAL=off: GSSAPI Security API support (security/heimdal)
     GSSAPI_MIT=off: GSSAPI Security API support (security/krb5)
     GSSAPI_NONE=on: No GSSAPI Security API support
===> Use 'make config' to modify these settings

USES:
cpe libedit iconv

Master Sites:
  1. ftp://ftp.ciril.fr/pub/isc/bind9/9.9.9-P1/
  2. ftp://ftp.dti.ad.jp/pub/net/isc/bind9/9.9.9-P1/
  3. ftp://ftp.freenet.de/pub/ftp.isc.org/isc/bind9/9.9.9-P1/
  4. ftp://ftp.funet.fi/pub/mirrors/ftp.isc.org/isc/bind9/9.9.9-P1/
  5. ftp://ftp.iij.ad.jp/pub/network/isc/bind9/9.9.9-P1/
  6. ftp://ftp.isc.org/isc/bind9/9.9.9-P1/
  7. ftp://ftp.mirrorservice.org/sites/ftp.isc.org/isc/bind9/9.9.9-P1/
  8. ftp://ftp.nominum.com/pub/isc/bind9/9.9.9-P1/
  9. ftp://ftp.ntua.gr/pub/net/isc/isc/bind9/9.9.9-P1/
  10. ftp://ftp.ripe.net/mirrors/sites/ftp.isc.org/isc/bind9/9.9.9-P1/
  11. ftp://ftp.sunet.se/pub/network/isc/bind9/9.9.9-P1/
  12. ftp://ftp.task.gda.pl/mirror/ftp.isc.org/isc/bind9/9.9.9-P1/
  13. ftp://ftp.u-aizu.ac.jp/pub/net/isc/bind9/9.9.9-P1/
  14. http://distcache.FreeBSD.org/ports-distfiles/
  15. http://ftp.isc.org/isc/bind9/9.9.9-P1/
Port Moves
  • port moved here from dns/bind98 on 2014-10-21
    REASON: BIND 9.8 EOL

Number of commits found: 139 (showing only 100 on this page)

1 | 2  »  

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
16 Jun 2016 13:23:13
Original commit files touched by this commit  9.9.9P1
Revision:416966
mat search for other commits by this committer
Fix usage of WITH_OPENSSL_BASE, WITH_OPENSSL_PORT and OPENSSL_PORT.

WITH_OPENSSL_* can't be set after bsd.port.pre.mk.
Fold all other usage into using SSL_DEFAULT == foo

PR:		210149
Submitted by:	mat
Exp-run by:	antoine
Sponsored by:	The FreeBSD Foundation, Absolight
Differential Revision:	https://reviews.freebsd.org/D6577
26 May 2016 08:54:58
Original commit files touched by this commit  9.9.9P1
Revision:415882
mat search for other commits by this committer
Update to 9.9.9-P1 and 9.10.4-P1.

Sponsored by:	Absolight
25 May 2016 13:28:21
Original commit files touched by this commit  9.9.9_1
Revision:415831
mat search for other commits by this committer
Add --with-dlopen=yes to the default options to allow using third
parties dlz drivers.

While there:
- enable the DLZ_FILESYSTEM option by default
- convert to USES=mysql and USES=bdb

Requested by:	borius i ua
Sponsored by:	Absolight
23 May 2016 20:35:01
Original commit files touched by this commit  9.9.9
Revision:415742
amdmi3 search for other commits by this committer
Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket
29 Apr 2016 10:04:43
Original commit files touched by this commit  9.9.9
Revision:414265
mat search for other commits by this committer
Update to 9.9.9.

While there, update the root hints file.

Sponsored by:	Absolight
06 Apr 2016 13:53:09
Original commit files touched by this commit  9.9.8P4
Revision:412619
mat search for other commits by this committer
Stop bringing in OpenSSL from ports, it builds fine with the base one on
9, and WITH_OPENSSL_PORT does not belong in a port's Makefile anyway.

Not bumping PORTREVISION because:
- if you are building with poudriere, it will detect that a dependency
  has changed and rebuild it.
- if you are building from ports, you will have OpenSSL from ports
  installed, and it will choose to use it.

Sponsored by:	Absolight
01 Apr 2016 14:00:57
Original commit files touched by this commit  9.9.8P4
Revision:412346
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories d, e, f, and g.

With hat:	portmgr
Sponsored by:	Absolight
09 Mar 2016 21:16:32
Original commit files touched by this commit  9.9.8P4
Revision:410728
mat search for other commits by this committer
Update to 9.9.8-P4, 9.10.3-P4 and latest snapshot.

MFH:		2016Q1 (obviously)
Security:	CVE-2016-1285
Security:	CVE-2016-1286
Security:	CVE-2016-2088
Sponsored by:	Absolight
19 Jan 2016 21:13:06
Original commit files touched by this commit  9.9.8P3
Revision:406719 This port version is marked as vulnerable.
mat search for other commits by this committer
Update bind99 to 9.9.8-P3, bind910 to 9.10.3-P3 and bind9-devel to
latest snapshot.

MFH:		2016Q1
Security:	CVE-2015-8704
Security:	CVE-2015-8705
Sponsored by:	Absolight
16 Dec 2015 00:45:02
Original commit files touched by this commit  9.9.8P2
Revision:403826 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND9 to the latest patch releases, 9.9.8-P2, 9.10.3-P2, and snapshot.

MFH:		2015Q4
Changes:	https://kb.isc.org/article/AA-01326/81/BIND-9.9.8-P2-Release-Notes.html
Changes:	https://kb.isc.org/article/AA-01328/81/BIND-9.10.3-P2-Release-Notes.html
Security:	CVE-2015-3193
Security:	CVE-2015-8000
Security:	CVE-2015-8461
Sponsored by:	Absolight
08 Oct 2015 12:14:42
Original commit files touched by this commit  9.9.8_1
Revision:398817 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix build WITH=DLZ_BDB.

PR:		201715
Sponsored by:	Absolight
25 Sep 2015 10:05:48
Original commit files touched by this commit  9.9.8_1
Revision:397807 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix build on -CURRENT. [1]

- Force building with libedit
- Bump PORTREVISION to account for accidental succesful builds

PR:		203273 [1]
Sponsored by:	Absolight
18 Sep 2015 22:11:21
Original commit files touched by this commit  9.9.8
Revision:397301 This port version is marked as vulnerable.
mat search for other commits by this committer
Fixup gssapi from base.

Submitted by:	hrs
Sponsored by:	Absolight
16 Sep 2015 08:12:05
Original commit files touched by this commit  9.9.8
Revision:397042 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to bind99 to 9.9.8 & bind910 to 9.10.3.

- Add new QUERYTRACE & FETCHLIMIT.
  Note that QUERYTRACE is for debug purposes, and will eat your
  performances.
- Don't do the PORTREVISION patch if PORTREVISION is 0.
- Regen some patches

Changes:	https://lists.isc.org/pipermail/bind-announce/2015-September/000961.html
Changes:	https://lists.isc.org/pipermail/bind-announce/2015-September/000962.html
Sponsored by:	Absolight
02 Sep 2015 20:46:56
Original commit files touched by this commit  9.9.7P3
Revision:395908 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND to 9.9.7-P3 and 9.10.2-P4.

MFH:		2015Q3 (Also needs 393161 395660 395703)
Security:	CVE-2015-5722, CVE-2015-5986
Sponsored by:	Absolight
31 Aug 2015 16:43:15
Original commit files touched by this commit  9.9.7P2_3
Revision:395703 This port version is marked as vulnerable.
mat search for other commits by this committer
Add an option for embedding PORTREVISION in the server's version string.

Sponsored by:	Absolight
31 Aug 2015 10:06:27
Original commit files touched by this commit  9.9.7P2_2
Revision:395660 This port version is marked as vulnerable.
mat search for other commits by this committer
When not using OpenSSL from ports, do not try to unmount the chrooted
engines directory.

PR:		201423 (based on)
Submitted by:	girgen
Sponsored by:	Absolight
29 Jul 2015 14:36:21
Original commit files touched by this commit  9.9.7P2_1
Revision:393161 This port version is marked as vulnerable.
mat search for other commits by this committer
Add an option to enable the bind min override ttl patch.

Requested by:	Laurent Frigault
Sponsored by:	Absolight
28 Jul 2015 22:21:45
Original commit files touched by this commit  9.9.7P2
Revision:393127 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND9.

- 9.9 -> 9.9.7-P2
- 9.10 -> 9.10.2-P3

Security:	CVE-2015-5477
Sponsored by:	Absolight
07 Jul 2015 22:15:08
Original commit files touched by this commit  9.9.7P1_4
Revision:391534 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND 9.9 to 9.9.7-P1 and 9.10 to 9.10.2-P2.

MFH:		2015Q3
Security:	CVE-2015-4620
Sponsored by:	Absolight
01 Jun 2015 10:13:58
Original commit files touched by this commit  9.9.7_4
Revision:388211 This port version is marked as vulnerable.
mat search for other commits by this committer
Make BIND start a bit later (and really *after* ldconfig.) [1]
Add an option to have it start way later.

PR:		200375 [1]
Sponsored by:	Absolight
18 May 2015 11:41:42
Original commit files touched by this commit  9.9.7_3
Revision:386672 This port version is marked as vulnerable.
mat search for other commits by this committer
Allow BIND 9.10 users to select the old key format when using GOST.[1]

While there, reword the options a bit, and the pkg-help files.

PR:		200031 [1]
Submitted by:	 Leo Vandewoestijne [1]
Sponsored by:	Absolight
30 Apr 2015 14:43:05
Original commit files touched by this commit  9.9.7_3
Revision:385049 This port version is marked as vulnerable.
mat search for other commits by this committer
When named.conf was placed somewhere else than %%ETCDIR%%, rndc would stop
working.

PR:		199384
Submitted by:	Curtis Villamizar
Sponsored by:	Absolight
01 Apr 2015 22:36:11
Original commit files touched by this commit  9.9.7_2
Revision:382966 This port version is marked as vulnerable.
marino search for other commits by this committer
dns/bind99, dns/bind910: support no-base option on DragonFly

Approved by:	mat (maintainer)
31 Mar 2015 15:03:00
Original commit files touched by this commit  9.9.7_2
Revision:382829 This port version is marked as vulnerable.
mat search for other commits by this committer
Enhance the error message when running from a jail without devfs.

Sponsored by:	Absolight
24 Mar 2015 15:22:51
Original commit files touched by this commit  9.9.7_1
Revision:382109 This port version is marked as vulnerable.
mat search for other commits by this committer
Add chroot back to BIND's startup script.

Differential Revision:	https://reviews.freebsd.org/D1952
Sponsored by:	Absolight
26 Feb 2015 02:03:15
Original commit files touched by this commit  9.9.7
Revision:379978 This port version is marked as vulnerable.
mat search for other commits by this committer
Update dns/bind99 to 9.9.7 and dns/bind910 to 9.10.2.

On 8 and 9, use the same configuration path than on 10+, ${PREFIX}/etc/namedb/.

Sponsored by:	Absolight
18 Feb 2015 22:37:54
Original commit files touched by this commit  9.9.6P2
Revision:379326 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND 9.9 and 9.10 to the latest security patch.

Sponsored by:	Absolight
18 Feb 2015 21:56:09
Original commit files touched by this commit  9.9.6P1_4
Revision:379318 This port version is marked as vulnerable.
mat search for other commits by this committer
Add a patch for CVE-2015-1349 while I work on updating both ports to the new
version.

Security:	CVE-2015-1349
Sponsored by:	Absolight
06 Jan 2015 15:04:12
Original commit files touched by this commit  9.9.6P1_3
Revision:376429 This port version is marked as vulnerable.
mat search for other commits by this committer
Generate the RPZ patch filename from ISCVERSION directly.

Sponsored by:	Absolight
06 Jan 2015 15:01:18
Original commit files touched by this commit  9.9.6P1_3
Revision:376428 This port version is marked as vulnerable.
mat search for other commits by this committer
Add a note about running the right BIND daemon on 8 and 9.

Sponsored by:	Absolight
05 Jan 2015 23:54:33
Original commit files touched by this commit  9.9.6P1_2
Revision:376375 This port version is marked as vulnerable.
mat search for other commits by this committer
Really remove BIND_DESTETC.

Noticed by:	wblock, Matt Mullins
Sponsored by:	Absolight
05 Jan 2015 17:44:12
Original commit files touched by this commit  9.9.6P1_1
Revision:376329 This port version is marked as vulnerable.
mat search for other commits by this committer
Retire REPLACE_BASE option.

While there, reduce changes from bind99 and bind910 ports.

Sponsored by:	Absolight
08 Dec 2014 17:29:44
Original commit files touched by this commit  9.9.6P1
Revision:374305 This port version is marked as vulnerable.
mat search for other commits by this committer
Security update of BIND9 to 9.9.6-P1 and 9.10.1-P1.

Security:	CVE-2014-8500 CVE-2014-8680
Sponsored by:	Absolight
24 Nov 2014 17:41:10
Original commit files touched by this commit  9.9.6_1
Revision:373227 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix three ports forgotten by the USE_PGSQL removal.  (Fix a typo in devel/upp.)

Sponsored by:	Absolight
17 Nov 2014 17:51:52
Original commit files touched by this commit  9.9.6_1
Revision:372675 This port version is marked as vulnerable.
mat search for other commits by this committer
Install the bind.keys file with the root and dlv.isc.org keys.

Sponsored by:	Absolight
07 Oct 2014 10:25:21
Original commit files touched by this commit  9.9.6
Revision:370291 This port version is marked as vulnerable.
mat search for other commits by this committer
Note REPLACE_BASE will get removed.

Sponsored by:	Absolight
23 Sep 2014 13:25:35
Original commit files touched by this commit  9.9.6
Revision:369056 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 9.9.6.

Sponsored by:	Absolight
07 Sep 2014 10:24:59
Original commit files touched by this commit  9.9.5P1_5
Revision:367505 This port version is marked as vulnerable.
mat search for other commits by this committer
configure no longer has problems detecting our arch like it had in bind95's
time, so remove ARCH modification, which leads to other problems, like [1]

PR:		193359 [1]
Submitted by:	dinoex [1]
Sponsored by:	Absolight
29 Jul 2014 22:16:12
Original commit files touched by this commit  9.9.5P1_5
Revision:363400 This port version is marked as vulnerable.
mat search for other commits by this committer
Enable RRL by default.

Requested by:	so many my head hurts
Sponsored by:	Absolight
24 Jul 2014 18:34:16
Original commit files touched by this commit  9.9.5P1_4
Revision:362835 This port version is marked as vulnerable.
tijl search for other commits by this committer
net/openldap24-*:
- Convert to USES=libtool and bump dependent ports
- Avoid USE_AUTOTOOLS
- Don't use PTHREAD_LIBS
- Use MAKE_CMD

databases/glom:
- Drop :keepla
- Add INSTALL_TARGET=install-strip

databases/libgda4* databases/libgda5*:
- Convert to USES=libtool and bump dependent ports
- USES=tar:xz
- Use INSTALL_TARGET=install-strip
- Use @sample
(Only the first 15 lines of the commit message are shown above View all of this commit message)
11 Jul 2014 15:38:42
Original commit files touched by this commit  9.9.5P1_3
Revision:361553 This port version is marked as vulnerable.
mat search for other commits by this committer
And it's supposed to be lower case.

Sponsored by:	Absolight
11 Jul 2014 15:28:13
Original commit files touched by this commit  9.9.5P1_3
Revision:361548 This port version is marked as vulnerable.
mat search for other commits by this committer
Add CPE to BIND9.

Sponsored by:	Absolight
24 Jun 2014 15:15:33
Original commit files touched by this commit  9.9.5P1_3
Revision:359094 This port version is marked as vulnerable.
mat search for other commits by this committer
Add a PYTHON option to bind99 and bind910, it installs a couple of dnssec
related utilities.
Use bind's own Makefiles for installation in bind-tools.

Sponsored by:	Absolight
18 Jun 2014 12:23:28
Original commit files touched by this commit  9.9.5P1_2
Revision:358262 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix dns/bind-tools after the gssapi update.

Also, move it from BIND 9.9 to 9.10, and add delv and nsupdate.

Sponsored by:	Absolight
17 Jun 2014 17:16:33
Original commit files touched by this commit  9.9.5P1_2
Revision:358151 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove test bits.

Pointy hat to:	mat
Sponsored by:	Absolight
17 Jun 2014 15:01:25
Refresh Original commit files touched by this commit
Revision:358127
mat search for other commits by this committer
Convert dns/bind9* to USES=gssapi.

Sponsored by:	Absolight
13 Jun 2014 13:14:32
Original commit files touched by this commit  9.9.5P1
Revision:357679 This port version is marked as vulnerable.
mat search for other commits by this committer
Correct local path for rpz* patchs.

Sponsored by:	Absolight
12 Jun 2014 14:18:57
Original commit files touched by this commit  9.9.5P1
Revision:357597 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 9.9.5-P1.

Changes:	https://lists.isc.org/pipermail/bind-announce/2014-June/000913.html
Sponsored by:	Absolight
09 Jun 2014 10:24:24
Original commit files touched by this commit  9.9.5_18
Revision:357127 This port version is marked as vulnerable.
mat search for other commits by this committer
Unbreak, it seems not everybody as switched to pkg yet...

Sponsored by:	Absolight
06 Jun 2014 10:59:46
Original commit files touched by this commit  9.9.5_17
Revision:356762 This port version is marked as vulnerable.
mat search for other commits by this committer
Don't install rndc.conf

It is generated by the rc script during the first startup.  And if
the file is present, it messes up the rndc.key generation.

Poked by:	Alain Audebert
Sponsored by:	Absolight
17 May 2014 21:30:25
Original commit files touched by this commit  9.9.5_16
Revision:354375 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix build with GOST (on 10, base OpenSSL doesn't have it)
Make sure OpenSSL from ports is used < 10.

Sponsored by:	Absolight
16 May 2014 03:13:58
Original commit files touched by this commit  9.9.5_15
Revision:354193 This port version is marked as vulnerable.
mat search for other commits by this committer
Ok, revert r354129, it was a bad idea.

Poked by:	many
Sponsored by:	Absolight
15 May 2014 14:12:34
Original commit files touched by this commit  9.9.5_14
Revision:354129 This port version is marked as vulnerable.
mat search for other commits by this committer
Try and fix the plist for bind9* ports when <10.

Poked by:	swills
Sponsored by:	Absolight
14 May 2014 23:59:14
Original commit files touched by this commit  9.9.5_13
Revision:354095 This port version is marked as vulnerable.
mat search for other commits by this committer
Make GOST in BIND 9.* optional

Test Plan: Currently testing in poudriere

Differential Revision: https://phabric.freebsd.org/D12
17 Apr 2014 16:43:49
Original commit files touched by this commit  9.9.5_12
Revision:351487 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix the rc script reload command.

Noticed by:	David Samms
Sponsored by:	Absolight
16 Apr 2014 18:28:50
Original commit files touched by this commit  9.9.5_11
Revision:351411 This port version is marked as vulnerable.
zeising search for other commits by this committer
The FreeBSD x11@ and graphics team proudly presents
a zeising, kwm production, with help from dumbbell, bdrewery:

NEW XORG ON FREEBSD 9-STABLE AND 10-STABLE

This update switches over to use the new xorg stack by default on FreeBSD 9
and 10 stable, on osversions where vt(9) is available.
It is still possible to use the old stack by specifying WITHOUT_NEW_XORG in
/etc/make.conf .
FreeBSD 8-STABLE and released versions of FreeBSD still use
the old version.
A package repository with binary packages for new xorg will
be available soon.

This patch also contains updates of libxcb and related ports, pixman, as well
(Only the first 15 lines of the commit message are shown above View all of this commit message)
12 Apr 2014 19:23:10
Original commit files touched by this commit  9.9.5_10
Revision:351124 This port version is marked as vulnerable.
mat search for other commits by this committer
Use @sample for my port, cleanup an etc/PORTNAME into ETCDIR.

Sponsored by:	Absolight
10 Apr 2014 20:43:50
Original commit files touched by this commit  9.9.5_10
Revision:350848 This port version is marked as vulnerable.
mat search for other commits by this committer
Two changes to the RC script
- Add a dependency on ldconfig
- Allow people to change the pidfile

PR:		188439
Submitted by:	Oliver Lehmann
Sponsored by:	Absolight
10 Apr 2014 15:45:03
Original commit files touched by this commit  9.9.5_9
Revision:350817 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove noop patch.

Sponsored by:	Absolight
09 Apr 2014 14:14:46
Original commit files touched by this commit  9.9.5_9
Revision:350710 This port version is marked as vulnerable.
mat search for other commits by this committer
- Add a patch to install missing man page
- Add dnssec-* tools to bind-tools[1]

Requested by:	many [1]
Sponsored by:	Absolight
27 Mar 2014 13:30:12
Original commit files touched by this commit  9.9.5_8
Revision:349338 This port version is marked as vulnerable.
mat search for other commits by this committer
- Fix startup script
- Fix whitespace

PR:		188011
Submitted by:	takefu
Sponsored by:	Absolight
25 Mar 2014 17:25:17
Original commit files touched by this commit  9.9.5_7
Revision:349162 This port version is marked as vulnerable.
mat search for other commits by this committer
Finaly pet rclint.

With help from:	crees
Sponsored by:	Absolight
25 Mar 2014 15:46:24
Original commit files touched by this commit  9.9.5_6
Revision:349154 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove GSSAPI from the default options.

Almost nobody needs it, and people keep having a hard time building BIND
because of this.

Sponsored by:	Absolight
17 Mar 2014 18:46:47
Original commit files touched by this commit  9.9.5_5
Revision:348497 This port version is marked as vulnerable.
mat search for other commits by this committer
- Use SUB_FILES for named.conf and the rc script
- Fix some package installation warnings

Sponsored by:	Absolight
06 Mar 2014 17:31:55
Original commit files touched by this commit  9.9.5_4
Revision:347284 This port version is marked as vulnerable.
mat search for other commits by this committer
Always depend on libxml[1]
Add XML newstats support to bind99[2]

PR:		186890[1], 186791[2]
Submitted by:	Jason Mann[1], Matthew Seaman[2]
Sponsored by:	Absolight
06 Mar 2014 17:12:52
Original commit files touched by this commit  9.9.5_3
Revision:347281 This port version is marked as vulnerable.
mat search for other commits by this committer
Try and have BIND start earlier.

Sponsored by:	Absolight
04 Mar 2014 17:37:54
Original commit files touched by this commit  9.9.5_2
Revision:347047 This port version is marked as vulnerable.
mat search for other commits by this committer
Actually commit what I tested.

Sponsored by:	Absolight
04 Mar 2014 17:32:46
Original commit files touched by this commit  9.9.5_2
Revision:347046 This port version is marked as vulnerable.
mat search for other commits by this committer
Don't polute isc-config.sh with gssapi flags.

Submitted by:	hrs
Sponsored by:	Absolight
27 Feb 2014 18:10:04
Original commit files touched by this commit  9.9.5_1
Revision:346383 This port version is marked as vulnerable.
mat search for other commits by this committer
Change the BIND ports to use PKGNAMESUFFIX.

Sponsored by:	Absolight
07 Feb 2014 09:15:23
Original commit files touched by this commit  9.9.5_1
Revision:343205 This port version is marked as vulnerable.
mat search for other commits by this committer
Add back the RPZ speed improvements patch.

Many thanks to:	Vernon Schryver
Sponsored by:	Absolight
31 Jan 2014 08:58:46
Original commit files touched by this commit  9.9.5
Revision:341947 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 9.9.5.

Changes:	https://lists.isc.org/pipermail/bind-announce/2014-January/000896.html
Sponsored by:	Absolight
27 Jan 2014 15:43:42
Original commit files touched by this commit  9.9.4.2
Revision:341417 This port version is marked as vulnerable.
garga search for other commits by this committer
Revert r341073, static libs are not supposed to be PIC
25 Jan 2014 18:28:03
Original commit files touched by this commit  9.9.4.2
Revision:341073 This port version is marked as vulnerable.
garga search for other commits by this committer
Add -fPIC to CFLAGS for amd64, this fix static libraries

Approved by:	mat@ (maintainer)
13 Jan 2014 17:38:28
Original commit files touched by this commit  9.9.4.2
Revision:339612 This port version is marked as vulnerable.
mat search for other commits by this committer
Security update to fix CVE-2014-0591 as reported at
https://kb.isc.org/article/AA-01078/74/

9.9.4 -> 9.9.4-P2
9.8.6 -> 9.8.6-P2
9.6-ESV-R10 -> 9.6-ESV-R10-P2

Security:	CVE-2014-0591 Remote DOS
08 Jan 2014 22:52:19
Original commit files touched by this commit  9.9.4_9
Revision:339186 This port version is marked as vulnerable.
mat search for other commits by this committer
Fixup rndc.conf.sample installation

Spotted by:	antoine
07 Jan 2014 09:55:07
Original commit files touched by this commit  9.9.4_8
Revision:338989 This port version is marked as vulnerable.
erwin search for other commits by this committer
There's always a default value for named_conf now, so no need to
check for it, and espcially not for a wrong value.

Noticed by:	Stefan Bethke <stb@lassitu.de>
Approved by:	mat (maintainer)
06 Jan 2014 23:15:20
Original commit files touched by this commit  9.9.4_7
Revision:338952 This port version is marked as vulnerable.
mat search for other commits by this committer
Yet another round of fixes.

This time, it seems all of REPLACE_BASE, not REPLACE_BASE and post Bind removal
from base seem to work consistently.
06 Jan 2014 21:39:08
Original commit files touched by this commit  9.9.4_6
Revision:338943 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix yet another bug, they're creeping like crazy...
06 Jan 2014 17:31:55
Original commit files touched by this commit  9.9.4_5
Revision:338910 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix gssapi options knob.
06 Jan 2014 14:29:25
Original commit files touched by this commit  9.9.4_4
Revision:338882 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix build with LINKS.
06 Jan 2014 13:34:48
Original commit files touched by this commit  9.9.4_4
Revision:338877 This port version is marked as vulnerable.
mat search for other commits by this committer
Convert to staging and new options.
04 Jan 2014 19:25:57
Original commit files touched by this commit  9.9.4_3
Revision:338674 This port version is marked as vulnerable.
mat search for other commits by this committer
Add the DOCS option to OPTIONS_DEFAULT.
02 Jan 2014 13:43:12
Original commit files touched by this commit  9.9.4_2
Revision:338442 This port version is marked as vulnerable.
erwin search for other commits by this committer
Hand the BIND ports to a new volunteer.
10 Dec 2013 10:01:21
Original commit files touched by this commit  9.9.4_2
Revision:336054 This port version is marked as vulnerable.
erwin search for other commits by this committer
Fix build with GSSAPI option without Kerberos

PR:		184560
Submitted by:	Dewayne <dewayne@heuristicsystems.com.au>
08 Dec 2013 19:49:52
Original commit files touched by this commit  9.9.4_2
Revision:335933 This port version is marked as vulnerable.
marino search for other commits by this committer
bind(96,98,99): Couple OSVERSION with OPSYS

OSVERSION is platform-specific and must be used with OPSYS.

Approved by:	maintainer (erwin)
07 Dec 2013 10:50:23
Original commit files touched by this commit  9.9.4_2
Revision:335824 This port version is marked as vulnerable.
gjb search for other commits by this committer
To prevent fallout of lowering __FreeBSD_version in releng/10.0 branch,
adjust OSVERSION evaluation in ports that specifically use '100050N'.

Approved by:	affected maintainers (implicit)
Sponsored by:	The FreeBSD Foundation
05 Dec 2013 12:54:56
Original commit files touched by this commit  9.9.4_2
Revision:335667 This port version is marked as vulnerable.
erwin search for other commits by this committer
Install named.conf as named.conf.sample and don't overwrite on upgrade

Bullet hole in foot:	joeld
Pointy hat:		erwin
04 Dec 2013 12:15:53
Original commit files touched by this commit  9.9.4_1
Revision:335618 This port version is marked as vulnerable.
erwin search for other commits by this committer
Fix build with GSSAPI

Submitted by:	sunpoet
22 Nov 2013 19:05:01
Original commit files touched by this commit  9.9.4_1
Revision:334604 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
- Respect BIND_DESTETC and PREFIX

Submitted by:	sunpoet (myself)
Approved by:	erwin (maintainer)
22 Nov 2013 13:41:34
Original commit files touched by this commit  9.9.4_1
Revision:334593 This port version is marked as vulnerable.
erwin search for other commits by this committer
Fix startup script.

PR:		184159 [1]
Submitted by:	Pawel Biernacki <pawel.biernacki@gmail.com> [1],
		Trond Endrestoel <Trond.Endrestol@ximalas.info> (private email)
12 Nov 2013 10:59:20
Original commit files touched by this commit  9.9.4
Revision:333563 This port version is marked as vulnerable.
erwin search for other commits by this committer
Support FreeBSD 10.0.

On FreeBSD 10.0, all configuration is installed under
/usr/local/etc/namedb and installs its own rc script in
$PREFIX, which no longer support chroot installations.

LINKS and REPLACE_BASE options are not supported on 10.0
for obvious reasons.

Note for FreeBSD 9.x and earlier users, LINKS is no longer
the default option, though still supported.
04 Nov 2013 11:23:11
Original commit files touched by this commit  9.9.4
Revision:332693 This port version is marked as vulnerable.
erwin search for other commits by this committer
Drop support for REPLACE_BIND option after BIND was removed from base,
there's nothing to replace.
23 Sep 2013 10:20:56
Original commit files touched by this commit  9.9.4
Revision:327967 This port version is marked as vulnerable.
erwin search for other commits by this committer
Add an option for filter-aaaa

Submitted by:	Matej Gregr <matej.gregr@gmail.com>
20 Sep 2013 16:31:58
Original commit files touched by this commit  9.9.4
Revision:327719 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
dns)
20 Sep 2013 08:22:45
Original commit files touched by this commit  9.9.4
Revision:327668 This port version is marked as vulnerable.
erwin search for other commits by this committer
Update to 9.9.4

Note that the Rate Limiting option has been renamed.

Security Fixes

   Previously an error in bounds checking on the private type
   'keydata' could be used to deny service through a deliberately
   triggerable REQUIRE failure (CVE-2013-4854).  [RT #34238]

   Prevents exploitation of a runtime_check which can crash named
   when satisfying a recursive query for particular malformed zones.
   (CVE-2013-3919) [RT #33690]

New Features
(Only the first 15 lines of the commit message are shown above View all of this commit message)
17 Sep 2013 11:31:49
Original commit files touched by this commit  9.9.3.2
Revision:327469 This port version is marked as vulnerable.
erwin search for other commits by this committer
Make GSSAPI support optional

PR:		182122
Submitted by:	Uwe Doering <gemini@geminix.org>
05 Sep 2013 20:18:30
Original commit files touched by this commit  9.9.3.2
Revision:326444 This port version is marked as vulnerable.
bsam search for other commits by this committer
. introduce ICONV_CONFIGURE_BASE variable at Mk/Uses/iconv.mk. It's value is
  "--with-libiconv=${LOCALBASE}" at systems pre OSVERSION 100043 and "" (null)
  otherwise;
. convert all ports which has CONFIGURE_ARGS=--with-libiconv=${LOCALBASE}.

Approved by:	portmgr (bapt, implicit)
27 Jul 2013 21:08:36
Original commit files touched by this commit  9.9.3.2
Revision:323808 This port version is marked as vulnerable.
roberto search for other commits by this committer
Update the RPZ+RL patches for both versions.

Approved by:	erwin
26 Jul 2013 22:19:27
Original commit files touched by this commit  9.9.3.2
Revision:323758 This port version is marked as vulnerable.
roberto search for other commits by this committer
Put back the two patches for RPZ-RL that were removed during the previous
update.

Number of commits found: 139 (showing only 100 on this page)

1 | 2  »  

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
php55Jun 25
php55-gdJun 25
php55-mbstringJun 25
php55-wddxJun 25
php55-zipJun 25
php56Jun 25
php56-gdJun 25
php56-mbstringJun 25
php56-pharJun 25
php56-wddxJun 25
php56-zipJun 25
php70Jun 25
php70-gdJun 25
php70-mbstringJun 25
php70-pharJun 25

17 vulnerabilities affecting 44 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26141
Broken 281
Deprecated 285
Ignore 545
Forbidden 0
Restricted 202
No CDROM 85
Vulnerable 58
Expired 13
Set to expire 272
Interactive 0
new 24 hours 5
new 48 hours13
new 7 days32
new fortnight54
new month118

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.