FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
nsd Authoritative only non-recursive name server
4.1.13 dns on this many watch lists=22 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: jaap@NLnetLabs.nl search for ports maintained by this maintainer
Port Added: 05 Sep 2003 04:55:22
Also Listed In: ipv6
License: BSD3CLAUSE
NSD (Name Server Daemon) is a complete implementation of an
authoritative DNS nameserver.

WWW: http://www.nlnetlabs.nl/nsd
SVNWeb : Homepage : PortsMon

To install the port: cd /usr/ports/dns/nsd/ && make install clean
To add the package: pkg install nsd

PKGNAME: nsd

distinfo:

TIMESTAMP = 1474969514
SHA256 (nsd-4.1.13.tar.gz) = c45cd4ba2101a027e133b2be44db9378e27602e05f09a5ef25019e1ae45291af
SIZE (nsd-4.1.13.tar.gz) = 1085701


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Library dependencies:
  1. libevent.so : devel/libevent2
There are no ports dependent upon this port

Configuration Options
===> The following configuration options are available for nsd-4.1.13:
     BIND8_STATS=off: BIND8-like NSTATS & XSTATS
     CHECKING=off: Internal run-time checks
     DOCS=on: Build and/or install documentation
     IPV6=on: IPv6 protocol support
     LARGEFILE=on: Largefile support
     MINRESPSIZE=on: Minimial response sizing
     MMAP=off: Use mmap instead of malloc (experimental)
     MUNIN_PLUGIN=off: Install Munin plugin (requires BIND8_STATS)
     NSEC3=on: NSEC3 support
     RADIXTREE=on: Enabled: more (15%) memory use but less CPU cycles
     ROOT_SERVER=off: Configure as a root server
     RRL=on: Response Rate Limiting
     ZONE_STATS=off: Separate statistics for each zone
===> Use 'make config' to modify these settings

USES:
cpe ssl

pkg-mesage:
**************************************************************************
*
*   To run nsd from startup, add nsd_enable="YES" to your etc/rc.conf
*
*   Starting with nsd version 4 the old nsdc control program has been
*   replaced by nsd-control. This requires some manual setup with
*   nsd-control-setup and editing of the config files.
*
*   nsd-control is incompatible with nsdc so when that is used in scripts,
*   these should be adapted
*
**************************************************************************

Master Sites:
  1. ftp://ftp.rhnet.is/pub/nsd/
  2. http://www.nlnetlabs.nl/downloads/nsd/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2013-11-12
    Affects: users of dns/nsd
    Author: erwin@FreeBSD.org
    Reason: 
      dns/nsd was updated to the new 4.0.0 major release.
    
      This version replaces the nsdc control program with nsd-control.
      This requires some manual setup with nsd-control-setup and editing
      of the config files. nsd-control is incompatible with nsdc so when
      that is used in scripts, these should be adapted.  More information:
      http://www.nlnetlabs.nl/svn/nsd/tags/NSD_4_0_0_REL/doc/NSD-4-features
    
      NSD version 3 is still supported in dns/nsd3.  To keep the old
      version:
      # portmaster -o dns/nsd3 dns/nsd
        or
      # portupgrade -fo dns/nsd3 dns/nsd
        or
      # pkg set -o dns/nsd:dns/nsd3
    
    
  • 2011-11-30
    Affects: users of dns/nsd
    Author: zi@FreeBSD.org
    Reason: 
      The database format of nsd.db has changed as of version 3.2.9.
      Before you run nsd, you must convert the existing database:
    
      # nsdc rebuild
    
    
Port Moves
  • port moved here from dns/nsd3 on 2016-05-20
    REASON: Has expired: NSD 3 is EOL, please upgrade to NSD 4 in dns/nsd

Number of commits found: 97

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
01 Oct 2016 16:37:31
Original commit files touched by this commit  4.1.13
Revision:423081
pawel search for other commits by this committer
Update to version 4.1.13

SUMMARY:
Some features, such as multi master check option that does not upgrade
from the first master that answers, but picks the best one.
Additional section handling for type SRV. And bug fixes.

FEATURES:
- multi-master-check: yes can be used to check all masters for the
  last version, using the higher version from the configured masters,
  from Manabu Sonoda.
- Support RR type OPENPGPKEY from RFC 7929.
- Can config key algorithms with the digest name, eg. 'sha256'.
- configure --disable-radix-tree for about 15% lower memory usage.
- for type SRV add A/AAAA to the additional section (if possible),
(Only the first 15 lines of the commit message are shown above View all of this commit message)
02 Sep 2016 16:38:13
Original commit files touched by this commit  4.1.12
Revision:421270
delphij search for other commits by this committer
Update to 4.12.

Release note:
  Fix malformed edns query assertion failure, reported
  by Michal Kepien (NASK)

PR:		ports/212327
Submitted by:	maintainer (jaap NLnetLabs nl)
MFH:		2016Q3
17 Aug 2016 13:22:27
Original commit files touched by this commit  4.1.11
Revision:420347
lev search for other commits by this committer
 Add profiles to nsd init script.

PR:		211883
Submitted by:	lev
Approved by:	jaap@NLnetLabs.nl
10 Aug 2016 01:32:14
Original commit files touched by this commit  4.1.11
Revision:419980
junovitch search for other commits by this committer
dns/nsd: update 4.1.10 -> 4.1.11

- Restore configurable IPV6 option. Upstream integrated fix for issue.

- FEATURES:
* When tcp is more than half full, use short timeout for tcp session.
* Patch for {max,min}-{refresh,retry}-time from YAMAGUCHI Takanori.
* Fix #790: size-limit-xfr can stop NSD from downloading infinite zone transfer
  data size, from Toshifumi Sakaguchi.
  Fixes CVE-2016-6173 JVN#63359718 JPCERT#91251865.
- BUGFIXES:
* Fix build without IPv6, patch from Zdenek Kaspar.
* Fix #783: Trying to run a root server without having configured it silently
  gives wrong answers.
* Fix #782: Serve DS record but parent zone has no NS record.
* Fix nsec3 missing for nsec3 signed parent and child for DS at zonecut.

PR:		211693
Submitted by:	jaap@NLnetLabs.nl (maintainer)
Security:	CVE-2016-6173
Security:	https://vuxml.FreeBSD.org/freebsd/7d08e608-5e95-11e6-b334-002590263bf5.html
MFH:		2016Q3
28 Jul 2016 11:23:59
Original commit files touched by this commit  4.1.10
Revision:419211 This port version is marked as vulnerable.
koobs search for other commits by this committer
dns/nsd: Remove IPv6 option, fixes build

Remove the IPv6 option that is causing builds to fail when it is
disabled. The issue does not affect package users, as it was a default
option.

The issue has been fixed upstream [1] and will be included/renabled
in the next version update.

While I'm here:

* Switch to USES=ssl
* Add --enable-ipv6 in CONNFIGURE_ARGS to ensure it's explicitly enabled

[1] https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=800

PR:		211303
Reported by:	<vfx9as gmail com>
Approved by:	maintainer <jaap NLnetLabs nl>
MFH:		2016Q3
18 Jun 2016 21:45:42
Original commit files touched by this commit  4.1.10
Revision:417090 This port version is marked as vulnerable.
rm search for other commits by this committer
dns/nsd: update to 4.1.10

- turn on IPV6 option by default

PR:		210276
Submitted by:	jaap@NLnetLabs.nl (maintainer)
23 May 2016 20:35:01
Original commit files touched by this commit  4.1.9
Revision:415742 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket
19 May 2016 11:09:14
Original commit files touched by this commit  4.1.9
Revision:415503 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Fix trailing whitespace in pkg-messages

Approved by:	portmgr blanket
01 Apr 2016 14:00:57
Original commit files touched by this commit  4.1.9
Revision:412346 This port version is marked as vulnerable.
mat search for other commits by this committer
Remove ${PORTSDIR}/ from dependencies, categories d, e, f, and g.

With hat:	portmgr
Sponsored by:	Absolight
15 Mar 2016 19:56:28
Original commit files touched by this commit  4.1.9
Revision:411202 This port version is marked as vulnerable.
ohauer search for other commits by this committer
- update to 4.1.9

BUG FIXES:
- Change the nsd.db file version because of nanosecond precision fix.

Approved by:    jaap@NLnetLabs.nl (maintainer)
PR:             208043
MFH:            2016Q1
14 Mar 2016 06:59:15
Original commit files touched by this commit  4.1.8
Revision:411048 This port version is marked as vulnerable.
ohauer search for other commits by this committer
- update to 4.1.8
- add ability to build agains openssl or libressl from ports
- add MUNIN_PLUGIN_IMPLIES= BIND8_STATS
- use @sample macro in pkg-plist for nsd.conf
- s/exec/postexec/ pkg-plist

FEATURES:
- #732: tcp-mss, outgoing-tcp-mss options for nsd.conf, patch
  from Daisuke Higashi.
- #739: zonefile changes when mtime is small are detected on reload,
  if filesystem supports precision mtime values.
- RR type CSYNC (RFC7477) syntax is supported.

BUG FIXES:
- take advantage of arc4random_uniform if available, patch from
  Loganaden Velvindron.
- Fix flto check for OSX clang.
- Define _DEFAULT_SOURCE with _BSD_SOURCE for glibc 2.20 on Linux.
- Fix #736: segfault during zone transfer.
- Fix #744: Fix that NSD replies for configured but unloaded zone
  with SERVFAIL, not REFUSED.

PR:		207951
Submitted by:	jaap@NLnetLabs.nl (maintainer)
MFH:		2016Q1
18 Dec 2015 05:45:00
Original commit files touched by this commit  4.1.7
Revision:403954 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Fix a typo

PR:		205373
Submitted by:	TEUBEL Gyorgy
Approved by:	mat (mentor), maintainer
Differential Revision:	D4604
16 Dec 2015 05:09:16
Original commit files touched by this commit  4.1.7
Revision:403836 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 4.1.7
- Switch to options helper

PR:		205292
Submitted by:	maintainer
Approved by:	mat (mentor)
Differential Revision:	D4579
13 Nov 2015 22:22:39
Original commit files touched by this commit  4.1.6
Revision:401554 This port version is marked as vulnerable.
erwin search for other commits by this committer
Update to 4.1.6

Major Bug Bug Fixes:
- This release fixes segfault after start when many interfaces are in use.
- This version returns the EDNS bad version response with the AD flag
  unset for improved conformance.

Minor Buf Fixes:
- Fix #701: Fix that AD=1 set in a BADVERS response.
- Fix typo in zonec.c inside error message.
- Fix #711: Document that debug-mode yes is used for staying
  attached to the supervisor console.
- Document verbosity 3 prints more information.
- nsd-checkconf warns for master zones with no zonefile statement.
- Fix start failure when many file descriptors are in use.
- The servfail rcode is not printed with a space in the middle.
- print failed token for config syntax error or parse error.

PR:		204533
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Sponsored by:	DK Hostmaster A/S
21 Sep 2015 16:03:55
Original commit files touched by this commit  4.1.5
Revision:397511 This port version is marked as vulnerable.
erwin search for other commits by this committer
Upgrade from 4.1.3 to version to 4.1.5 (includes up 4.1.4)

FEATURES:
- RFC7553 RR Type URI support.
- removed hardcoded interface limit, --with-max-ips removed.
- Admitted axfrs are logged at verbosity 1. Refused at verbosity 2.

Major BUG FIXES:
- Fix NSID response for short edns sizes.
- Fix that for expired zones NSD performs an AXFR and accepts newer
  and older serial numbers.

PR:		203231
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Sponsored by:	DK Hostmaster A/S
02 Jul 2015 07:49:58
Original commit files touched by this commit  4.1.3
Revision:391130 This port version is marked as vulnerable.
erwin search for other commits by this committer
Update to 4.1.3

PR:		201261
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Sponsored by:	DK Hostmaster A/S
18 May 2015 17:44:33
Original commit files touched by this commit  4.1.2
Revision:386695 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add option to install Munun plugin

PR:		199798
Submitted by:	tgyurci@gmail.com
Approved by:	maintainer timeout
10 May 2015 05:09:35
Original commit files touched by this commit  4.1.2
Revision:385924 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Add CPE info

Approved by:	portmgr blanket
16 Apr 2015 11:04:37
Original commit files touched by this commit  4.1.2
Revision:384097 This port version is marked as vulnerable.
erwin search for other commits by this committer
Update to 4.1.2
- Logging improvements
- Zone parser bug fixes
- Integer overflow bug fixes

PR:		199462
Submitted by:	Jaap Akkerhuis <jaap@nlnetlabs.nl> (maintainer)
08 Feb 2015 02:42:52
Original commit files touched by this commit  4.1.1
Revision:378628 This port version is marked as vulnerable.
erwin search for other commits by this committer
update to 4.1.1

Major Features:

- RFC 7344: CDS and CDNSKEY (read record types).
- per zone statistics with --enable-zone-stats
- Disabled use of SSLv3 in nsd-control.
- Synthesize CNAMEs with same TTL as DNAME.
- nsd-checkconf -f prints out full name of pidfile (with dir). [1]

PR:		197291,
		196449 [1]
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl>,
		Adam Zaleski <adam@zaleski.org> [1]
01 Dec 2014 23:25:51
Original commit files touched by this commit  4.1.0_1
Revision:373728 This port version is marked as vulnerable.
ohauer search for other commits by this committer
- use new @dir macros to create empty folders
27 Oct 2014 12:13:23
Original commit files touched by this commit  4.1.0_1
Revision:371557 This port version is marked as vulnerable.
bapt search for other commits by this committer
Cleanup plist
02 Oct 2014 19:12:17
Original commit files touched by this commit  4.1.0_1
Revision:369852 This port version is marked as vulnerable.
bdrewery search for other commits by this committer
Chase r369850 for updated nsd user information
05 Sep 2014 11:20:42
Original commit files touched by this commit  4.1.0
Revision:367332 This port version is marked as vulnerable.
erwin search for other commits by this committer
- Update to 4.1.0
- Use nsd instead of bind user

This release has new features and bugfixes.  In nsd.conf you can
configure database: "" this makes NSD not use the large mmapped nsd.db
file, but instead read and write the zonefiles in text format, which
saves about 50% of the memory usage.  Also zonefile reading and
writing has been optimised to be faster, as well as processing time
for zone transfers.  NSD writes the (changed) zonefiles every hour.

The new nsd-checkzone tool reports if a zonefile parses so you can check
it before reading it into the daemon.

A bug is fixed where NSD 4 causes rising load average and memory
consumption on Linux systems, which is caused by a bug in Linux that
slowly deteriorates system performance by repeated recursive forks.

Full release notes:
http://open.nlnetlabs.nl/pipermail/nsd-users/2014-September/002007.html

PR:		193332
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Sponsored by:	DK Hostmaster A/S
24 Jul 2014 13:32:59
Original commit files touched by this commit  4.0.3_1
Revision:362796  Sanity Test Failure This port version is marked as vulnerable.
bapt search for other commits by this committer
Only use libevent2

Remove libevent as libevent2 is providing a good compatibility interface as well
as providing better performances.
Remove custom patches from libevent2 and install libevent2 the regular way
Mark ports abusing private fields of the libevent1 API as broken
Import a patch from fedora to have honeyd working with libevent2
Remove most of the patches necessary to find the custom installation we used to
have for libevent2

With hat:	portmgr
24 Mar 2014 12:55:26
Original commit files touched by this commit  4.0.3
Revision:348987 This port version is marked as vulnerable.
madpilot search for other commits by this committer
- Update to 4.0.3

PR:		ports/187596
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
23 Feb 2014 23:31:44
Original commit files touched by this commit  4.0.1_3
Revision:345776 This port version is marked as vulnerable.
ohauer search for other commits by this committer
- remove pre-patch delay
- remove PKG-INSTALL from post-install (not used with staging)
- move pkg-install and pkg-deinstall into pkg-plist

Approved by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer, per PM)
22 Feb 2014 13:14:55
Original commit files touched by this commit  4.0.1_2
Revision:345635 This port version is marked as vulnerable.
pawel search for other commits by this committer
Prefer CONFIGURE_ENABLE over CONFIGURE_ON/OFF

Suggested by:	mat@
22 Feb 2014 12:47:25
Original commit files touched by this commit  4.0.1_2
Revision:345629 This port version is marked as vulnerable.
pawel search for other commits by this committer
- Fix man installation after port was stagified [1]
- Convert LIB_DEPENDS to new format [1]
- Remove leading article from COMMENT
- Switch to options helpers
- Conditional installation of docs is not needed with stage
- Don't show pkg-message twice

PR:		ports/186693 [1]
Submitted by:	Denis Generalov <gd.workbox@gmail.com>
Approved by:	maintainer
12 Feb 2014 10:46:24
Original commit files touched by this commit  4.0.1_1
Revision:343896 This port version is marked as vulnerable.
erwin search for other commits by this committer
There was a wrong rc script in the port preventing the daemon to run.

Added STAGING support

Added LICENSE (NSD3CLAUSE) statement

Other small changes to make portlint more happy

PR:		186631
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
07 Feb 2014 14:44:23
Original commit files touched by this commit  4.0.1
Revision:343250 This port version is marked as vulnerable.
decke search for other commits by this committer
- Update to 4.0.1
- Cleanup rc script

FEATURES:
- recognizes ip-address and interface as synonyms for convenience.
- Support for EUI48 and EUI64 RR types enabled by default (RFC 7043).
- Support for CAA RRtype (RFC 6844).
- NSID can be set with "ascii_somestring" in ascii.

BUG FIXES:
- Fix xfrd when zone transfer TCP contains zero length packets.
- Fix for NSEC3 zones where parent zone is co-hosted, also NSEC3,
because AXFRs overwrote nsec3 administration in the child zone.
- Fix that bad IXFR updates do not result in double SOA records,
and that an AXFR is started (attempted) when the zone state seems
(Only the first 15 lines of the commit message are shown above View all of this commit message)
12 Nov 2013 13:24:45
Original commit files touched by this commit  4.0.0
Revision:333569 This port version is marked as vulnerable.
erwin search for other commits by this committer
Please welcome NSD 4.0.0

For all new features, see
http://www.nlnetlabs.nl/svn/nsd/tags/NSD_4_0_0_REL/doc/NSD-4-features

This version replaces the nsdc control program with nsd-control.
This requires some manual setup with nsd-control-setup and editing
of the config files. nsd-control is incompatible with nsdc so when
that is used in scripts, these should be adapted.

NSD 3 is still supported as dns/nsd3.

PR:		183888
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl>
20 Sep 2013 16:31:58
Original commit files touched by this commit  3.2.16
Revision:327719 This port version is marked as vulnerable.
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
dns)
23 Jul 2013 15:32:49
Original commit files touched by this commit  3.2.16
Revision:323534 This port version is marked as vulnerable.
pawel search for other commits by this committer
- Update to version 3.2.16
- Add EUI_RRTYPES option

While here:
- Remove leading article from COMMENT
- Convert tab to space in WWW: line

PR:		ports/180741
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
25 Feb 2013 21:59:12
Original commit files touched by this commit  3.2.15
Revision:312942 This port version is marked as vulnerable.
beech search for other commits by this committer
- Add multi-instance support

PR:		ports/176156
Submitted by:	Darren Pilgrim <darren.pilgrim@gmail.com>
Approved by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
05 Feb 2013 09:42:31
Original commit files touched by this commit  3.2.15
Revision:311685 This port version is marked as vulnerable.
erwin search for other commits by this committer
- Update to 3.2.15

Features
* Support for ILNP RR types: NID, L32, L64, LP (RFC6742).
* RRL, --enable-ratelimit at configure time and config options.
* TSIG initialization only fails when there is no digest found at all.
Bugfixes
* Bugfix #478: Declaration after statement (for gcc 2.95).
* Bugfix #483: Better error message in case of TSIG error.
* Bugfix #485: TTL should not be greater than 2^31 - 1.
* Fix RCODE when CNAME loop final answer does not exist,
should return NXDOMAIN as stated by RFC 6604.
* Fix --disable-full-prehash bug, where after multiple incoming IXFRs,
NSEC3 can be removed unjustified.

PR:		175837
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
01 Nov 2012 18:41:16
Original commit files touched by this commit  3.2.14
Revision:306815 This port version is marked as vulnerable.
bdrewery search for other commits by this committer
- Update to 3.2.14
- Trim header

Changes:
  * Bugfixes
  * New Feature: Use of writev, to improve TCP response time

PR:		ports/173261
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Feature safe:	yes
23 Aug 2012 12:27:28
Original commit files touched by this commit  3.2.13
 This port version is marked as vulnerable.
tj search for other commits by this committer
Fix typo in options handling.

PR:		ports/170794
Submitted by:	Artis Caune <Artis.Caune@gmail.com>
Approved by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Approved by:	eadler (mentor)
27 Jul 2012 12:39:06
Original commit files touched by this commit  3.2.13
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Update to 3.2.13
- Cleanup whitespace
- Document vulnerability in dns/nsd (CVE-2012-29789)

PR:		ports/170208
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Security:	17f369dc-d7e7-11e1-90a2-000c299b62e1
20 Jul 2012 15:09:19
Original commit files touched by this commit  3.2.12
 This port version is marked as vulnerable.
crees search for other commits by this committer
Update to 3.2.12

BUG FIXES:
- Fix for VU#624931 CVE-2012-2978: NSD denial of service
vulnerability from non-standard DNS packet from any host
on the internet.

PR:		ports/170001
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Security:	CVE-2012-2978
17 Jul 2012 23:49:20
Original commit files touched by this commit  3.2.11_1
 This port version is marked as vulnerable.
jase search for other commits by this committer
- Fix LARGEFILE option typo that resulted in largefile support being
  constantly disabled.

PR:		ports/169952
Spotted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Approved by:	flo (mentor)
17 Jul 2012 10:36:25
Original commit files touched by this commit  3.2.11
 This port version is marked as vulnerable.
jase search for other commits by this committer
- Update to 3.2.11 [1]
- Convert to optionsNG, add DOCS option
- Replace bsd.port.{pre,post}.mk includes
- Remove non-existent DNSSEC, TSIG, NSID options
- Fix typo in NSEC3PREHASH option CONFIGURE_ARGS
- Replace hardcoded ETCDIR in pkg-plist

PR:		ports/169731 [1]
Submitted by:	Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Approved by:	flo (mentor)
16 Feb 2012 17:04:09
Original commit files touched by this commit  3.2.10
 This port version is marked as vulnerable.
culot search for other commits by this committer
- Update to 3.2.10

PR:             ports/165185
Submitted by:   Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
14 Jan 2012 08:57:23
Original commit files touched by this commit  3.2.9
 This port version is marked as vulnerable.
dougb search for other commits by this committer
In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.
30 Nov 2011 22:56:11
Original commit files touched by this commit  3.2.9
 This port version is marked as vulnerable.
zi search for other commits by this committer
- Remove post-install check to conditionally run 'nsdc patch'

Submitted by:   me
Approved by:    Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Feature safe:   yes
28 Nov 2011 11:36:53
Original commit files touched by this commit  3.2.9
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.2.9

PR:             162782
Submitted by:   Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
Feature safe:   yes
30 Mar 2011 13:48:13
Original commit files touched by this commit  3.2.8
 This port version is marked as vulnerable.
ohauer search for other commits by this committer
 - update to version 3.2.8

 Bugfixes:
    Do setusercontext before chroot, otherwise login.conf etc. are required
inside chroot.
    Bugfix #216: Fix leak of compressiontable when the domain table increases in
size.
    Bugfix #348: Don't include header/library path if OpenSSL is in /usr.
    Bugfix #350: Refused notifies should log client ip.
    Bugfix #352: Fix hard coded paths in man pages.
    Bugfix #354: The realclean target deletes a bit too much.
    Bugfix #357, make xfrd quit with many zones.
    Bugfix #362: outgoing-interface and v4 vs. v6 leads to spurious warning
messages.
    Bugfix #363: nsd-checkconf -v does not print outgoing-interface ok.
    Bugfix: nsd-checkconf -o outgoing-interface omits NOKEY.
    Undo Bugfix #235: Don't skip dname compression, messes up packets that do
need compression.

PR:             ports/155785
Submitted by:   Jaap Akkerhuis <jaap _at_ nlnetlabs.nl> (maintainer)
26 Jan 2011 11:32:51
Original commit files touched by this commit  3.2.7
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Update to 3.2.7

PR:             ports/154264
Submitted by:   Jaap Akkerhuis <jaap@nlnetlabs.nl> (maintainer)
Feature safe:   yes
25 Nov 2010 16:04:00
Original commit files touched by this commit  3.2.6_2
 This port version is marked as vulnerable.
bapt search for other commits by this committer
- fix status command in rc file
- while here remove MD5 entry
bump port revision

PR:             ports/152565
Submitted by:   eli <elij.mx _at_ gmail.com>
Approved by:    Jaap Akkerhuis <jaap _at_ nlnetlabs.nl>
24 Nov 2010 15:44:15
Original commit files touched by this commit  3.2.6_1
 This port version is marked as vulnerable.
bapt search for other commits by this committer
improvements on rc script:
 - support reload command
 - use nsdc cli has command and let it perform the actual start,stop,... of the
daemon
 - at start check if the database exists if not built it (this prevent the
daemon to fail at starting)
 - remove the now userless sleep in stop command

bump portrevision

PR:             ports/152331
Submitted by:   Philippe Pepiot <phil _at_ philpep.org>
Approved by:    Jaap Akkerhuis <jaap _at_ NLnetLabs.nl> (maintainer)
03 Aug 2010 17:26:10
Original commit files touched by this commit  3.2.6
 This port version is marked as vulnerable.
lwhsu search for other commits by this committer
- Update to 3.2.6

PR:             ports/149234
Submitted by:   Jaap Akkerhuis <jaap AT NLnetLabs.nl> (maintainer)
09 May 2010 11:22:47
Original commit files touched by this commit  3.2.5
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.2.5

PR:             145781
Submitted by:   Jaap Akkerhuis <jaap@NLnetLabs.nl> (maintainer)
27 Mar 2010 00:15:24
Original commit files touched by this commit  3.2.4_1
 This port version is marked as vulnerable.
dougb search for other commits by this committer
Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#
20 Mar 2010 18:00:32
Original commit files touched by this commit  3.2.4_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Pass maintainership to Jaap Akkerhuis <jaap@nlnetlabs.nl>

PR:             144865
Submitted by:   Olafur Osvaldsson <osvaldsson@icelandic.net> (previous
maintainer)
11 Feb 2010 19:37:10
Original commit files touched by this commit  3.2.4_1
 This port version is marked as vulnerable.
pgollucci search for other commits by this committer
- Fix permission issues

PR:             ports/143550
Submitted by:   Marko Njezic <mrmax063@maxempire.com>
Approved by:    Olafur Osvaldsson <osvaldsson@icelandic.net> (maintainer)
12 Jan 2010 00:41:23
Original commit files touched by this commit  3.2.4
 This port version is marked as vulnerable.
wen search for other commits by this committer
- Update to 3.2.4

PR:             ports/142718
Submitted by:   Olafur Osvaldsson <osvaldsson@icelandic.net> (maintainer)
04 Sep 2009 16:44:48
Original commit files touched by this commit  3.2.3
 This port version is marked as vulnerable.
wxs search for other commits by this committer
- Update to 3.2.3

PR:             ports/138529
Submitted by:   Olafur Osvaldsson <osvaldsson@icelandic.net>
19 May 2009 12:44:03
Original commit files touched by this commit  3.2.2
 This port version is marked as vulnerable.
laszlof search for other commits by this committer
- Update to 3.2.2.

PR:             ports/134698
Submitted by:   Olafur Osvaldsson <osvaldsson@icelandic.net> (maintainer)
03 Feb 2009 22:54:11
Original commit files touched by this commit  3.2.1
 This port version is marked as vulnerable.
amdmi3 search for other commits by this committer
- Update to 3.2.1

PR:             131325
Submitted by:   Olafur Osvaldsson <osvaldsson at icelandic dot net> (maintainer)
16 Jan 2009 00:30:07
Original commit files touched by this commit  3.2.0_1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Add missing openssl dependency [1]
- Fix race when stopping nsd [2]

PR:             ports/130263 [1]
                ports/130294 [2]

Submitted by:   Artis Caune <Artis.Caune@gmail.com> [1] [2]
Approved by:    maintainer
21 Nov 2008 20:34:50
Original commit files touched by this commit  3.2.0
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.2.0

PR:             128818
Submitted by:   Olafur Osvaldsson <osvaldsson@icelandic.net> (maintainer)
21 Aug 2008 06:18:49
Original commit files touched by this commit  3.1.1
 This port version is marked as vulnerable.
rafan search for other commits by this committer
Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk
(Only the first 15 lines of the commit message are shown above View all of this commit message)
29 Jul 2008 17:23:02
Original commit files touched by this commit  3.1.1
 This port version is marked as vulnerable.
pgollucci search for other commits by this committer
Cosmetic changes to the rc.d file

Submitted by:   dougb
Approved by:    araujo (mentor), maintainer implicit
28 Jul 2008 22:25:55
Original commit files touched by this commit  3.1.1
 This port version is marked as vulnerable.
pgollucci search for other commits by this committer
- Update to 3.1.1
- Respect NOPORTDOCS
- Add option NSDMAX_INT
- rename rc.d script nsd.sh -> nsd

PR:     ports/125898
Approved by:    Olafur Osvaldsson <osvaldsson@icelandic.net>  (maintainer),
araujo (mentor)
14 Dec 2007 19:08:50
Original commit files touched by this commit  3.0.7
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.0.7

PR:             118059
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
13 Sep 2007 21:10:29
Original commit files touched by this commit  3.0.6
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.0.6

PR:             116180
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
22 Mar 2007 13:28:51
Original commit files touched by this commit  3.0.5
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.0.5

PR:             110671
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
25 Jan 2007 17:51:44
Original commit files touched by this commit  3.0.4
 This port version is marked as vulnerable.
rafan search for other commits by this committer
- Update to 3.0.4

PR:             ports/108329
Submitted by:   Olafur Osvaldsson <oli at isnic.is> (maintainer)
12 Dec 2006 20:28:43
Original commit files touched by this commit  3.0.3
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.0.3

PR:             ports/106607
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
06 Nov 2006 12:27:37
Original commit files touched by this commit  3.0.2
 This port version is marked as vulnerable.
clsung search for other commits by this committer
- Update to 3.0.2

PR:             ports/105200
Submitted by:   maintainer (Olafur Osvaldsson)
05 Nov 2006 05:58:02
Original commit files touched by this commit  3.0.1_1
 This port version is marked as vulnerable.
alepulver search for other commits by this committer
- Add CONFLICTS with dns/nsd2.
23 Sep 2006 08:07:48
Original commit files touched by this commit  3.0.1_1
 This port version is marked as vulnerable.
rafan search for other commits by this committer
- Fix required_files in rc script.
  It requres nsd.conf instead of nsd.zones.

PR:             ports/103491
Submitted by:   TAKAHASHI Kaoru <kaoru at kaisei.org>
Approved by:    Olafur Osvaldsson <oli at isnic.is> (maintainer)
12 Sep 2006 20:17:15
Original commit files touched by this commit  3.0.1
 This port version is marked as vulnerable.
miwi search for other commits by this committer
- Update to 3.0.1
- Changed to OPTIONS
- Added a warning for those using NSD_OPTIONS

PR:             ports/103196
Submitted by:   Olafur Osvaldsson <oli(at)isnic.is> (maintainer)
03 Jun 2006 03:05:35
Original commit files touched by this commit  2.3.5
 This port version is marked as vulnerable.
mnag search for other commits by this committer
- Update to 2.3.5

PR:             98379
Submitted by:   maintainer
12 Dec 2005 11:42:16
Original commit files touched by this commit  2.3.3
 This port version is marked as vulnerable.
ehaupt search for other commits by this committer
Update to 2.3.3

PR:             90177
Submitted by:   Konstantin Saurbier <Konstantin@math.uni-bielefeld.de>
Approved by:    Olafur Osvaldsson <oli@isnic.is> (maintainer)
06 Sep 2005 16:26:41
Original commit files touched by this commit  2.3.1
 This port version is marked as vulnerable.
garga search for other commits by this committer
- Update to 2.3.1

PR:             ports/85790
Submitted by:   maintainer
06 May 2005 11:50:25
Original commit files touched by this commit  2.3.0
 This port version is marked as vulnerable.
novel search for other commits by this committer
Update to 2.3.0

PR:             80654
Submitted by:   Olafur Osvaldsson (maintainer)
12 Apr 2005 03:26:57
Original commit files touched by this commit  2.2.1
 This port version is marked as vulnerable.
obrien search for other commits by this committer
At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.
11 Apr 2005 08:04:41
Original commit files touched by this commit  2.2.1
 This port version is marked as vulnerable.
obrien search for other commits by this committer
Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.
21 Feb 2005 15:17:09
Original commit files touched by this commit  2.2.1
 This port version is marked as vulnerable.
vs search for other commits by this committer
Update to 2.2.1

PR:             ports/77856
Submitted by:   maintainer
07 Feb 2005 21:51:13
Original commit files touched by this commit  2.2.0
 This port version is marked as vulnerable.
edwin search for other commits by this committer
[MAINTAINER] dns/nsd: update to 2.2.0

        - Update to 2.2.0
        With this release nsd no longer requires named-xfer to be
        present on the system.

        I also changed the options to a configure script.

        Added file(s):
        - scripts/configure.nsd

PR:             ports/76412
Submitted by:   Olafur Osvaldsson <oli@isnic.is>
30 Nov 2004 12:58:19
Original commit files touched by this commit  2.1.5
 This port version is marked as vulnerable.
sem search for other commits by this committer
- Update to 2.1.5

BUG FIXES:
        - Bug #90: handle \000 in TXT records correctly
        - Fixed undefined behavior in the use of vsnprintf when
          logging messages.

PR:             ports/74517
Submitted by:   maintainer
04 Nov 2004 13:09:07
Original commit files touched by this commit  2.1.4
 This port version is marked as vulnerable.
clive search for other commits by this committer
Update to 2.1.4, claimed to be OK about AXFR.

PR:             ports/73455
Submitted by:   MAINTAINER
02 Nov 2004 07:40:35
Original commit files touched by this commit  2.1.3
 This port version is marked as vulnerable.
sergei search for other commits by this committer
- Update to 2.1.3
- While I'm here, add explicit CONFIGURE_TARGET to silence a warning

PR:             ports/73293
Submitted by:   Olafur Osvaldsson (maintainer)
03 Aug 2004 07:13:17
Original commit files touched by this commit  2.1.2
 This port version is marked as vulnerable.
mezz search for other commits by this committer
-Update to 2.1.2.

NSD 2.1.2 release notes:

FEATURES:
        - NSD now fully supports unknown record types using the notation
          specified in RFC3597.
        - Support for the following RR types has been added: WKS, X25, ISDN,
          RT, NSAP, PX, NAPTR, KX, CERT, DNAME, and APL.  DNAME special
          processing is not supported.

BUG FIXES:
        - Bug #84: NSD now uses SIGUSR1 instead of SIGILL to report stats.
        - Bug #85: Support for WKS records.
        - Bug #86: The characters "#%&^[]?" can now be used without backslash
          in zone file domain names.
        - Plugin callback return type fixed.
        - The maximum message length for IPv6 UDP packets is now limited to
          the IPv6 minimum MTU (1280) unless the IPV6_USE_MIN_MTU socket
          option is supported.

PR:             ports/69914
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
22 Jul 2004 07:03:50
Original commit files touched by this commit  2.1.1_1
 This port version is marked as vulnerable.
vs search for other commits by this committer
- Fix signal-handling
- Bump PORTREVISION

PR:             ports/69385
Submitted by:   Olafur Osvaldsson (maintainer)
02 Jul 2004 22:14:06
Original commit files touched by this commit  2.1.1
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Update to 2.1.1

PR:             ports/68603
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
29 May 2004 23:58:37
Original commit files touched by this commit  2.1.0_1
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Rename knobs: ENABLE_* -> WITH_*, DISABLE_* -> WITHOUT_*

Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
Requested by:   kris
29 May 2004 12:23:56
Original commit files touched by this commit  2.1.0_1
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Add rc script
- Add a lot of knobs
- Add second master site

PR:             ports/67297
Submitted by:   Olafur Osvaldsson <oli@isnic.is> (maintainer)
27 May 2004 07:51:57
Original commit files touched by this commit  2.1.0
 This port version is marked as vulnerable.
vs search for other commits by this committer
Volunteer Olafur Osvaldsson as maintainer since he submitted updates
recently.
15 May 2004 14:21:47
Original commit files touched by this commit  2.1.0
 This port version is marked as vulnerable.
vs search for other commits by this committer
Update to 2.1.0: New networking code allows a single server to handle both
 UDP and TCP connections.
(Remove cruft from pkg-descr while here)

PR:             ports/66651
Submitted by:   Olafur Osvaldsson
11 May 2004 12:40:34
Original commit files touched by this commit  2.0.2
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Update to 2.0.2

PR:             ports/66519
Submitted by:   Olafur Osvaldsson <oli@isnic.is>
29 Jan 2004 07:24:56
Original commit files touched by this commit  1.2.4
 This port version is marked as vulnerable.
trevor search for other commits by this committer
SIZEify.
13 Jan 2004 00:06:11
Original commit files touched by this commit  1.2.4
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Fix typo in comment
13 Jan 2004 00:05:30
Original commit files touched by this commit  1.2.4
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Update to 1.2.4

PR:             ports/61279
Submitted by:   Vincent Tantardini <vinc@FreeBSD-fr.org>
01 Jan 2004 16:38:35
Original commit files touched by this commit  1.2.3
 This port version is marked as vulnerable.
pav search for other commits by this committer
- Update to 1.2.3

PR:             ports/60784
Submitted by:   Vincent Tantardini <vinc@0x45.org>
05 Sep 2003 04:54:37
Original commit files touched by this commit  1.2.2
 This port version is marked as vulnerable.
edwin search for other commits by this committer
Massive repo-copies request: net->dns (partly devel->dns)

PR:             ports/56020
Submitted by:   Kimura Fuyuki <fuyuki@nigredo.org>
Approved by:    portmgr

Number of commits found: 97

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
firefoxDec 01
firefox-esrDec 01
libxulDec 01
linux-firefoxDec 01
linux-thunderbirdDec 01
thunderbirdDec 01
tsharkDec 01
tshark-liteDec 01
wiresharkDec 01
wireshark-liteDec 01
wireshark-qt5Dec 01
expat2*Nov 30
expat2*Nov 30
gnupg1*Nov 30
libgcrypt*Nov 30

18 vulnerabilities affecting 59 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26916
Broken 313
Deprecated 147
Ignore 576
Forbidden 1
Restricted 213
No CDROM 82
Vulnerable 56
Expired 9
Set to expire 126
Interactive 0
new 24 hours 1
new 48 hours7
new 7 days46
new fortnight104
new month262

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.