notbugIf you buy from Amazon USA, please support us by using this link.
Port details
bind912 BIND DNS suite with updated DNSSEC and DNS64
9.12.3P1 dns on this many watch lists=3 search for ports that depend on this port An older version of this port was marked as vulnerable. Find issues related to this port Report an issue related to this port
Maintainer: mat@FreeBSD.org search for ports maintained by this maintainer
Port Added: 25 Oct 2017 16:12:15
Also Listed In: net ipv6
License: MPL20
BIND version 9 is a major rewrite of nearly all aspects of the underlying BIND
architecture.  Some of the important features of BIND 9 are:

DNS Security: DNSSEC (signed zones), TSIG (signed DNS requests)
IP version 6: Answers DNS queries on IPv6 sockets, IPv6 resource records (AAAA)
     Experimental IPv6 Resolver Library
DNS Protocol Enhancements: IXFR, DDNS, Notify, EDNS0
     Improved standards conformance
Views: One server process can provide multiple "views" of the DNS namespace,
     e.g. an "inside" view to certain clients, and an "outside" view to others.
Multiprocessor Support

See the CHANGES file for more information on new features.

WWW: https://www.isc.org/software/bind
SVNWeb : Homepage : PortsMon
    Pseudo-pkg-plist information, but much better, from make generate-plist
    Expand this list (363 items)
  1. /usr/local/share/licenses/bind912-9.12.3P1/catalog.mk
  2. /usr/local/share/licenses/bind912-9.12.3P1/LICENSE
  3. /usr/local/share/licenses/bind912-9.12.3P1/MPL20
  4. bin/arpaname
  5. bin/bind9-config
  6. bin/delv
  7. bin/dig
  8. @comment bin/dnstap-read
  9. bin/host
  10. bin/isc-config.sh
  11. bin/mdig
  12. bin/named-rrchecker
  13. bin/nslookup
  14. bin/nsupdate
  15. @sample etc/mtree/BIND.chroot.dist.sample
  16. @sample etc/mtree/BIND.chroot.local.dist.sample
  17. etc/namedb/bind.keys
  18. etc/namedb/master/empty.db
  19. etc/namedb/master/localhost-forward.db
  20. etc/namedb/master/localhost-reverse.db
  21. @sample etc/namedb/named.conf.sample
  22. etc/namedb/named.root
  23. etc/namedb/rndc.conf.sample
  24. include/bind9/check.h
  25. include/bind9/getaddresses.h
  26. include/bind9/version.h
  27. include/dns/acl.h
  28. include/dns/adb.h
  29. include/dns/badcache.h
  30. include/dns/bit.h
  31. include/dns/byaddr.h
  32. include/dns/cache.h
  33. include/dns/callbacks.h
  34. include/dns/catz.h
  35. include/dns/cert.h
  36. include/dns/client.h
  37. include/dns/clientinfo.h
  38. include/dns/compress.h
  39. include/dns/db.h
  40. include/dns/dbiterator.h
  41. include/dns/dbtable.h
  42. include/dns/diff.h
  43. include/dns/dispatch.h
  44. include/dns/dlz.h
  45. include/dns/dlz_dlopen.h
  46. include/dns/dns64.h
  47. include/dns/dnsrps.h
  48. include/dns/dnssec.h
  49. include/dns/dnstap.h
  50. @comment include/dns/dnstap.pb-c.h
  51. include/dns/ds.h
  52. include/dns/dsdigest.h
  53. include/dns/dyndb.h
  54. include/dns/ecdb.h
  55. include/dns/ecs.h
  56. include/dns/edns.h
  57. include/dns/enumclass.h
  58. include/dns/enumtype.h
  59. include/dns/events.h
  60. include/dns/fixedname.h
  61. include/dns/forward.h
  62. include/dns/geoip.h
  63. include/dns/ipkeylist.h
  64. include/dns/iptable.h
  65. include/dns/journal.h
  66. include/dns/keydata.h
  67. include/dns/keyflags.h
  68. include/dns/keytable.h
  69. include/dns/keyvalues.h
  70. include/dns/lib.h
  71. include/dns/librpz.h
  72. include/dns/log.h
  73. include/dns/lookup.h
  74. include/dns/master.h
  75. include/dns/masterdump.h
  76. include/dns/message.h
  77. include/dns/name.h
  78. include/dns/ncache.h
  79. include/dns/nsec.h
  80. include/dns/nsec3.h
  81. include/dns/nta.h
  82. include/dns/opcode.h
  83. include/dns/order.h
  84. include/dns/peer.h
  85. include/dns/portlist.h
  86. include/dns/private.h
  87. include/dns/rbt.h
  88. include/dns/rcode.h
  89. include/dns/rdata.h
  90. include/dns/rdataclass.h
  91. include/dns/rdatalist.h
  92. include/dns/rdataset.h
  93. include/dns/rdatasetiter.h
  94. include/dns/rdataslab.h
  95. include/dns/rdatastruct.h
  96. include/dns/rdatatype.h
  97. include/dns/request.h
  98. include/dns/resolver.h
  99. include/dns/result.h
  100. include/dns/rootns.h
  101. include/dns/rpz.h
  102. include/dns/rriterator.h
  103. include/dns/rrl.h
  104. include/dns/sdb.h
  105. include/dns/sdlz.h
  106. include/dns/secalg.h
  107. include/dns/secproto.h
  108. include/dns/soa.h
  109. include/dns/ssu.h
  110. include/dns/stats.h
  111. include/dns/tcpmsg.h
  112. include/dns/time.h
  113. include/dns/timer.h
  114. include/dns/tkey.h
  115. include/dns/tsec.h
  116. include/dns/tsig.h
  117. include/dns/ttl.h
  118. include/dns/types.h
  119. include/dns/update.h
  120. include/dns/validator.h
  121. include/dns/version.h
  122. include/dns/view.h
  123. include/dns/xfrin.h
  124. include/dns/zone.h
  125. include/dns/zonekey.h
  126. include/dns/zt.h
  127. include/dst/dst.h
  128. include/dst/gssapi.h
  129. include/dst/lib.h
  130. include/dst/result.h
  131. include/irs/context.h
  132. include/irs/dnsconf.h
  133. include/irs/netdb.h
  134. include/irs/platform.h
  135. include/irs/resconf.h
  136. include/irs/types.h
  137. include/irs/version.h
  138. include/isc/aes.h
  139. include/isc/app.h
  140. include/isc/assertions.h
  141. include/isc/atomic.h
  142. include/isc/backtrace.h
  143. include/isc/base32.h
  144. include/isc/base64.h
  145. include/isc/bind9.h
  146. include/isc/boolean.h
  147. include/isc/buffer.h
  148. include/isc/bufferlist.h
  149. include/isc/commandline.h
  150. include/isc/condition.h
  151. include/isc/counter.h
  152. include/isc/crc64.h
  153. include/isc/deprecated.h
  154. include/isc/dir.h
  155. include/isc/entropy.h
  156. include/isc/errno.h
  157. include/isc/error.h
  158. include/isc/event.h
  159. include/isc/eventclass.h
  160. include/isc/file.h
  161. include/isc/formatcheck.h
  162. include/isc/fsaccess.h
  163. include/isc/fuzz.h
  164. include/isc/hash.h
  165. include/isc/heap.h
  166. include/isc/hex.h
  167. include/isc/hmacmd5.h
  168. include/isc/hmacsha.h
  169. include/isc/ht.h
  170. include/isc/httpd.h
  171. include/isc/int.h
  172. include/isc/interfaceiter.h
  173. include/isc/iterated_hash.h
  174. include/isc/json.h
  175. include/isc/keyboard.h
  176. include/isc/lang.h
  177. include/isc/lex.h
  178. include/isc/lfsr.h
  179. include/isc/lib.h
  180. include/isc/likely.h
  181. include/isc/list.h
  182. include/isc/log.h
  183. include/isc/magic.h
  184. include/isc/md5.h
  185. include/isc/mem.h
  186. include/isc/meminfo.h
  187. include/isc/msgcat.h
  188. include/isc/msgs.h
  189. include/isc/mutex.h
  190. include/isc/mutexblock.h
  191. include/isc/net.h
  192. include/isc/netaddr.h
  193. include/isc/netdb.h
  194. include/isc/netscope.h
  195. include/isc/offset.h
  196. include/isc/once.h
  197. include/isc/ondestroy.h
  198. include/isc/os.h
  199. include/isc/parseint.h
  200. include/isc/platform.h
  201. include/isc/pool.h
  202. include/isc/portset.h
  203. include/isc/print.h
  204. include/isc/queue.h
  205. include/isc/quota.h
  206. include/isc/radix.h
  207. include/isc/random.h
  208. include/isc/ratelimiter.h
  209. include/isc/refcount.h
  210. include/isc/regex.h
  211. include/isc/region.h
  212. include/isc/resource.h
  213. include/isc/result.h
  214. include/isc/resultclass.h
  215. include/isc/rwlock.h
  216. include/isc/safe.h
  217. include/isc/serial.h
  218. include/isc/sha1.h
  219. include/isc/sha2.h
  220. include/isc/sockaddr.h
  221. include/isc/socket.h
  222. include/isc/stat.h
  223. include/isc/stats.h
  224. include/isc/stdio.h
  225. include/isc/stdlib.h
  226. include/isc/stdtime.h
  227. include/isc/strerror.h
  228. include/isc/string.h
  229. include/isc/symtab.h
  230. include/isc/syslog.h
  231. include/isc/task.h
  232. include/isc/taskpool.h
  233. include/isc/thread.h
  234. include/isc/time.h
  235. include/isc/timer.h
  236. include/isc/tm.h
  237. include/isc/types.h
  238. include/isc/util.h
  239. include/isc/version.h
  240. include/isc/xml.h
  241. include/isccc/alist.h
  242. include/isccc/base64.h
  243. include/isccc/cc.h
  244. include/isccc/ccmsg.h
  245. include/isccc/events.h
  246. include/isccc/lib.h
  247. include/isccc/result.h
  248. include/isccc/sexpr.h
  249. include/isccc/symtab.h
  250. include/isccc/symtype.h
  251. include/isccc/types.h
  252. include/isccc/util.h
  253. include/isccc/version.h
  254. include/isccfg/aclconf.h
  255. include/isccfg/cfg.h
  256. include/isccfg/dnsconf.h
  257. include/isccfg/grammar.h
  258. include/isccfg/log.h
  259. include/isccfg/namedconf.h
  260. include/isccfg/version.h
  261. include/ns/client.h
  262. include/ns/interfacemgr.h
  263. include/ns/lib.h
  264. include/ns/listenlist.h
  265. include/ns/log.h
  266. include/ns/notify.h
  267. include/ns/query.h
  268. include/ns/server.h
  269. include/ns/sortlist.h
  270. include/ns/stats.h
  271. include/ns/types.h
  272. include/ns/update.h
  273. include/ns/version.h
  274. include/ns/xfrout.h
  275. include/pk11/constants.h
  276. include/pk11/internal.h
  277. include/pk11/pk11.h
  278. include/pk11/result.h
  279. include/pk11/site.h
  280. include/pkcs11/cryptoki.h
  281. include/pkcs11/eddsa.h
  282. include/pkcs11/pkcs11.h
  283. include/pkcs11/pkcs11f.h
  284. include/pkcs11/pkcs11t.h
  285. lib/libbind9.a
  286. lib/libdns.a
  287. lib/libirs.a
  288. lib/libisc.a
  289. lib/libisccc.a
  290. lib/libisccfg.a
  291. lib/libns.a
  292. man/man1/arpaname.1.gz
  293. man/man1/bind9-config.1.gz
  294. man/man1/delv.1.gz
  295. man/man1/dig.1.gz
  296. @comment man/man1/dnstap-read.1.gz
  297. man/man1/host.1.gz
  298. man/man1/isc-config.sh.1.gz
  299. man/man1/mdig.1.gz
  300. man/man1/named-rrchecker.1.gz
  301. man/man1/nslookup.1.gz
  302. man/man1/nsupdate.1.gz
  303. man/man5/named.conf.5.gz
  304. man/man5/rndc.conf.5.gz
  305. man/man8/ddns-confgen.8.gz
  306. man/man8/dnssec-cds.8.gz
  307. man/man8/dnssec-checkds.8.gz
  308. man/man8/dnssec-coverage.8.gz
  309. man/man8/dnssec-dsfromkey.8.gz
  310. man/man8/dnssec-importkey.8.gz
  311. man/man8/dnssec-keyfromlabel.8.gz
  312. man/man8/dnssec-keygen.8.gz
  313. man/man8/dnssec-keymgr.8.gz
  314. man/man8/dnssec-revoke.8.gz
  315. man/man8/dnssec-settime.8.gz
  316. man/man8/dnssec-signzone.8.gz
  317. man/man8/dnssec-verify.8.gz
  318. man/man8/genrandom.8.gz
  319. man/man8/named-checkconf.8.gz
  320. man/man8/named-checkzone.8.gz
  321. man/man8/named-compilezone.8.gz
  322. man/man8/named-journalprint.8.gz
  323. man/man8/named-nzd2nzf.8.gz
  324. man/man8/named.8.gz
  325. man/man8/nsec3hash.8.gz
  326. @comment man/man8/pkcs11-destroy.8.gz
  327. @comment man/man8/pkcs11-keygen.8.gz
  328. @comment man/man8/pkcs11-list.8.gz
  329. @comment man/man8/pkcs11-tokens.8.gz
  330. man/man8/rndc-confgen.8.gz
  331. man/man8/rndc.8.gz
  332. man/man8/tsig-keygen.8.gz
  333. sbin/ddns-confgen
  334. sbin/dnssec-cds
  335. sbin/dnssec-checkds
  336. sbin/dnssec-coverage
  337. sbin/dnssec-dsfromkey
  338. sbin/dnssec-importkey
  339. sbin/dnssec-keyfromlabel
  340. sbin/dnssec-keygen
  341. sbin/dnssec-keymgr
  342. sbin/dnssec-revoke
  343. sbin/dnssec-settime
  344. sbin/dnssec-signzone
  345. sbin/dnssec-verify
  346. sbin/genrandom
  347. sbin/named
  348. sbin/named-checkconf
  349. sbin/named-checkzone
  350. sbin/named-compilezone
  351. sbin/named-journalprint
  352. sbin/named-nzd2nzf
  353. sbin/nsec3hash
  354. @comment sbin/pkcs11-destroy
  355. @comment sbin/pkcs11-keygen
  356. @comment sbin/pkcs11-list
  357. @comment sbin/pkcs11-tokens
  358. sbin/rndc
  359. sbin/rndc-confgen
  360. sbin/tsig-keygen
  361. @dir(bind,bind,) etc/namedb/dynamic
  362. @dir(bind,bind,) etc/namedb/slave
  363. @dir(bind,bind,) etc/namedb/working
  364. Collapse this list.

To install the port: cd /usr/ports/dns/bind912/ && make install clean
To add the package: pkg install bind912

PKGNAME: bind912

distinfo:

TIMESTAMP = 1544687855
SHA256 (bind-9.12.3-P1.tar.gz) = 6cb79389d787368af27f01c65a9fa09be1fd062eda37c94819a1a0178d5ded73
SIZE (bind-9.12.3-P1.tar.gz) = 8625693


Slave ports
  1. dns/bind-tools

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. py27-ply>=0 : devel/py-ply@py27
  2. python2.7 : lang/python27
Runtime dependencies:
  1. py27-ply>=0 : devel/py-ply@py27
  2. python2.7 : lang/python27
Library dependencies:
  1. libxml2.so : textproc/libxml2
  2. libidn2.so : dns/libidn2
  3. libjson-c.so : devel/json-c
  4. liblmdb.so : databases/lmdb
  5. libedit.so.0 : devel/libedit
  6. libiconv.so : converters/libiconv

This port is required by:

for Build * - deleted ports are only shown under the This port is required by section. It was harder to do for the Required section. Perhaps later...
Configuration Options
===> The following configuration options are available for bind912-9.12.3P1:
     DNSTAP=off: Provides fast passive logging of DNS messages
     DOCS=on: Build and/or install documentation
     FIXED_RRSET=off: Enable fixed rrset ordering
     GEOIP=off: Allow geographically based ACL.
     IDN=on: International Domain Names support
     IPV6=on: IPv6 protocol support
     JSON=on: JSON file/format/parser support
     LARGE_FILE=off: 64-bit file support
     LMDB=on: Use LMDB for zone management
     MINCACHE=off: Use the mincachettl patch
     PORTREVISION=off: Show PORTREVISION in the version string
     PYTHON=on: Build with Python utilities
     QUERYTRACE=off: Enable the very verbose query tracelogging
     RPZ_NSDNAME=on: Enable RPZ NSDNAME policy records
     RPZ_NSIP=on: Enable RPZ NSIP trigger rules
     SIGCHASE=on: dig/host/nslookup will do DNSSEC validation
     START_LATE=off: Start BIND late in the boot process (see help)
     TCP_FASTOPEN=on: RFC 7413 support
     THREADS=on: Threading support
     TUNING_LARGE=off: Tune named for large systems (**READ HELP**)
====> Dynamically Loadable Zones
     DLZ_POSTGRESQL=off: DLZ Postgres driver
     DLZ_MYSQL=off: DLZ MySQL driver (no threading)
     DLZ_BDB=off: DLZ BDB driver
     DLZ_LDAP=off: DLZ LDAP driver
     DLZ_FILESYSTEM=on: DLZ filesystem driver
     DLZ_STUB=off: DLZ stub driver
====> GSSAPI Security API support: you have to select exactly one of them
     GSSAPI_BASE=off: Using Heimdal in base
     GSSAPI_HEIMDAL=off: Using security/heimdal
     GSSAPI_MIT=off: Using security/krb5
     GSSAPI_NONE=on: Disable
====> Choose which crypto engine to use: you can only select none or one of them
     SSL=on: Build with OpenSSL (Required for DNSSEC)
     NATIVE_PKCS11=off: Use PKCS#11 native API (**READ HELP**)
===> Use 'make config' to modify these settings

USES:
compiler:c11 cpe libedit iconv python ssl

Conflicts:
  • CONFLICTS:
    • bind99
    • bind910
    • bind911
    • bind913
    • bind9-devel
    • bind-tools
Master Sites:
  1. ftp://ftp.ciril.fr/pub/isc/bind9/9.12.3-P1/
  2. ftp://ftp.freenet.de/pub/ftp.isc.org/isc/bind9/9.12.3-P1/
  3. ftp://ftp.funet.fi/pub/mirrors/ftp.isc.org/isc/bind9/9.12.3-P1/
  4. ftp://ftp.iij.ad.jp/pub/network/isc/bind9/9.12.3-P1/
  5. ftp://ftp.isc.org/isc/bind9/9.12.3-P1/
  6. ftp://ftp.mirrorservice.org/sites/ftp.isc.org/isc/bind9/9.12.3-P1/
  7. ftp://ftp.nominum.com/pub/isc/bind9/9.12.3-P1/
  8. ftp://ftp.ntua.gr/pub/net/isc/isc/bind9/9.12.3-P1/
  9. ftp://ftp.ripe.net/mirrors/sites/ftp.isc.org/isc/bind9/9.12.3-P1/
  10. ftp://ftp.task.gda.pl/mirror/ftp.isc.org/isc/bind9/9.12.3-P1/
  11. ftp://ftp.u-aizu.ac.jp/pub/net/isc/bind9/9.12.3-P1/
  12. https://ftp.isc.org/isc/bind9/9.12.3-P1/
Notes from UPDATING
These upgrade notes are taken from /usr/ports/UPDATING
  • 2015-03-24
    Affects: users of dns/bind9*
    Author: mat@FreeBSD.org
    Reason: 
      This is only for FreeBSD 10.0+.
    
      BIND auto chroot has been added back to the named rc script.  As enabling it
      by default would most certainly break people's setup, it is not.  To enable
      it, and chroot it in /var/named, add the following line to your rc.conf file:
    
      named_chrootdir="/var/named"
    
      On first launch, the rc script will move the /usr/local/etc/namedb directory
      into the chroot, and create a symlink to it.
    
      Note that, if you're running from within a jail, you need to have a
      /var/named/dev devfs created beforehand, with the null and random devices.
    
    
  • 2013-11-12
    Affects: users of dns/bind9*
    Author: erwin@FreeBSD.org
    Reason: 
      All bind9 ports have been updated to support FreeBSD 10.x after
      BIND was removed from the base system.  It is now self-contained
      in ${PREFIX}/etc/namedb, and chroot and symlinking options are
      no longer supported out of the box.
    
      For users of FreeBSD 9.x and earlier, the LINKS option is no longer
      enabled by default, but still supported.  No other changes should
      affect those users, and updating without changing already set options
      will keep the system in the same state.
    
    

Number of commits found: 40

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
13 Dec 2018 09:06:51
Original commit files touched by this commit  9.12.3P1
Revision:487359
mat search for other commits by this committer
Update to 9.11.5-P1, 9.12.3-P1, 9.13.5.

While there:
- Don't disable symbol table generation when building WITH_DEBUG.
- Try and make sure nullfs can really be used in a more robustt and
  centralized way.
- Make sure all changes are sync'ed among all BIND9 ports.
12 Dec 2018 01:35:36
Original commit files touched by this commit  9.12.3_2
Revision:487272
gerald search for other commits by this committer
Bump PORTREVISION for ports depending on the canonical version of GCC
defined via Mk/bsd.default-versions.mk which has moved from GCC 7.4 t
GCC 8.2 under most circumstances.

This includes ports
 - with USE_GCC=yes or USE_GCC=any,
 - with USES=fortran,
 - using Mk/bsd.octave.mk which in turn features USES=fortran, and
 - with USES=compiler specifying openmp, nestedfct, c11, c++0x, c++11-lang,
   c++11-lib, c++14-lang, c++17-lang, or gcc-c++11-lib
plus, as a double check, everything INDEX-11 showed depending on lang/gcc7.

PR:		231590
14 Nov 2018 10:11:58
Original commit files touched by this commit  9.12.3_1
Revision:484916
mat search for other commits by this committer
Make sure gost is really disabled.

It may get picked up from the base OpenSSL and break startup.
While there, make sure the correct engines are used.

Reported by:	Kevin P. Neal (on ports@)
14 Nov 2018 03:10:05
Original commit files touched by this commit  9.12.3
Revision:484911
linimon search for other commits by this committer
Now builds on powerpc64.

Approved by:	portmgr (tier-2 blanket)
02 Nov 2018 10:13:14
Original commit files touched by this commit  9.12.3
Revision:483798
mat search for other commits by this committer
Remove GOST support from BIND9 9.11 and 9.12.

It was never (widely|really) used, and support for it has been dropped
in OpenSSL starting at 1.1, and BIND9 starting at 9.13.

PR:		231980
Reported by:	mfechner
02 Nov 2018 09:59:46
Original commit files touched by this commit  9.12.3
Revision:483797
mat search for other commits by this committer
Fix build on powerpc64.

PR:		231786
Submitted by:	Piotr Kubaj
24 Oct 2018 08:06:06
Original commit files touched by this commit  9.12.3
Revision:482891
mat search for other commits by this committer
Update to 9.12.3.
20 Sep 2018 14:12:21
Original commit files touched by this commit  9.12.2P2
Revision:480175
mat search for other commits by this committer
Update to 9.12.2-P2

Switch to libidn2 for idn.
10 Sep 2018 13:16:17
Original commit files touched by this commit  9.12.2P1_2
Revision:479408
mat search for other commits by this committer
Various cleanup & fixes post-DOCS/EXAMPLES cleanup.

PR:		230864
Submitted by:	mat
exp-runs by:	antoine
05 Sep 2018 22:01:55
Original commit files touched by this commit  9.12.2P1_2
Revision:479045
sunpoet search for other commits by this committer
Update devel/json-c to 0.13.1

- Add my LOCAL to MASTER_SITES
- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://github.com/json-c/json-c/blob/master/ChangeLog
PR:		231007
Exp-run by:	antoine
24 Aug 2018 11:49:34
Original commit files touched by this commit  9.12.2P1_1
Revision:477957
mat search for other commits by this committer
Permit using allow-new-zones, LMDB, and a chrooted environment.

Fixes this obscure and not at all helpful message:
mdb_env_open of '_default.nzd' failed: No such file or directory

PR:		229125
Reported by:	Tomas Ciernik
MFH:		2018Q3
08 Aug 2018 21:25:56
Original commit files touched by this commit  9.12.2P1
Revision:476686
mat search for other commits by this committer
Update to 9.11.4-P1 and 9.12.2-P1.

Security:	CVE-2018-5740
Sponsored by:	Absolight
11 Jul 2018 09:36:54
Original commit files touched by this commit  9.12.2
Revision:474430
mat search for other commits by this committer
Update BIND9 ports to 9.11.4, 9.12.2 and 9.13.2.

Sponsored by:	Absolight
14 Jun 2018 15:42:52
Original commit files touched by this commit  9.12.1P2_1
Revision:472383
mat search for other commits by this committer
Include a patch to fix CVE-2018-5738 in all the BIND9 ports.

MFH:		2018Q2 (blanket)
Security:	CVE-2018-5738
Sponsored by:	Absolight
08 Jun 2018 13:28:14
Original commit files touched by this commit  9.12.1P2
Revision:471999
mat search for other commits by this committer
Fix build with LibreSSL 2.7.

PR:		226903
Submitted by:	Charlie Li
Reported by:	Piotr Kubaj
Sponsored by:	Absolight
06 Jun 2018 10:31:31
Original commit files touched by this commit  9.12.1P2
Revision:471831
mat search for other commits by this committer
Move things around a bit to be more handbook compliant.

Sponsored by:	Absolight
04 Jun 2018 23:42:08
Original commit files touched by this commit  9.12.1P2
Revision:471736
linimon search for other commits by this committer
Mark as broken on powerpc64.

Approved by:	portmgr (tier-2 blanket)
25 May 2018 12:43:32
Original commit files touched by this commit  9.12.1P2
Revision:470832
mat search for other commits by this committer
Add BIND9 9.13.0.

The ISC changed their release model, they are now doing
odd-unstable/even-stable release numbering.  This is a development
version, consider it alpha/beta quality.  The next stable release will
be 9.14.0.

Changes:	https://kb.isc.org/article/AA-01612
Sponsored by:	Absolight
22 May 2018 13:15:13
Original commit files touched by this commit  9.12.1P2
Revision:470610
mat search for other commits by this committer
Add PY_FLAVOR to Python module dependencies.

Sponsored by:	Absolight
21 May 2018 03:13:33
Original commit files touched by this commit  9.12.1P2
Revision:470507
delphij search for other commits by this committer
Security update to 9.12.1P2.

MFH:		2018Q2
Security:	94599fe0-5ca3-11e8-8be1-d05099c0ae8c
Security:	CVE-2018-5736, CVE-2018-5737
17 Apr 2018 08:26:49
Original commit files touched by this commit  9.12.1
Revision:467580 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix build when LOCALBASE!=/usr/local.

PR:		227554
Submitted by:	John Hein
Sponsored by:	Absolight
19 Mar 2018 11:21:38
Original commit files touched by this commit  9.12.1
Revision:465009 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND9 ports to 9.9.12, 9.10.7, 9.11.3 and 9.12.1.

Sponsored by:	Absolight
07 Feb 2018 14:29:09
Original commit files touched by this commit  9.12.0_3
Revision:461145 This port version is marked as vulnerable.
mat search for other commits by this committer
Teach named where its pid file should be by default, to be consistent
with the default configuration, rc script, man pages...

PR:		225687
Reported by:	John W. O'Brien
Sponsored by:	Absolight
03 Feb 2018 11:00:07
Original commit files touched by this commit  9.12.0_2
Revision:460805 This port version is marked as vulnerable.
mat search for other commits by this committer
Note that this is no longer a development version.

Sponsored by:	Absolight
30 Jan 2018 15:58:50
Original commit files touched by this commit  9.12.0_1
Revision:460413 This port version is marked as vulnerable.
mat search for other commits by this committer
TCP_FASTOPEN only concerns named, not the tools.

Reported by:	sunpoet
Sponsored by:	Absolight
30 Jan 2018 13:44:45
Original commit files touched by this commit  9.12.0_1
Revision:460385 This port version is marked as vulnerable.
mat search for other commits by this committer
Add a TCP_FASTOPEN option (default on) to allow not building it in. [1]

It is annoying because it outputs one line saying it cannot enable
TCP_FASTOPEN when the deamon starts.

While there, discover that FILTER_AAAA is always enabled in 9.12+ and no
longer an option, so remove it.

PR:		217288 [1] (based on)
Reported by:	doktornotor mailinator com
Sponsored by:	Absolight
24 Jan 2018 10:43:30
Original commit files touched by this commit  9.12.0
Revision:459831 This port version is marked as vulnerable.
mat search for other commits by this committer
Catch up with the conflicts lines in the BIND9 ports.

Sponsored by:	Absolight
24 Jan 2018 10:42:21
Original commit files touched by this commit  9.12.0
Revision:459828 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 9.12.0.

Sponsored by:	Absolight
19 Jan 2018 12:32:35
Original commit files touched by this commit  9.12.0.rc3_1
Revision:459406 This port version is marked as vulnerable.
mat search for other commits by this committer
Update named.root.

Sponsored by:	People afraid of a nuclear holocaust.
17 Jan 2018 07:59:45
Original commit files touched by this commit  9.12.0.rc3
Revision:459221 This port version is marked as vulnerable.
mat search for other commits by this committer
Update BIND9* to 9.9.11-P1, 9.10.6-P1, 9.11.2-P1 and 9.12.0rc3

MFH:		2018Q1
Security:	CVE-2017-3145
Sponsored by:	Absolight
12 Jan 2018 12:58:51
Original commit files touched by this commit  9.12.0.rc1_3
Revision:458822 This port version is marked as vulnerable.
mat search for other commits by this committer
Add a TUNING_LARGE option.

https://kb.isc.org/article/AA-01314/0

Tunes certain compiled-in constants and default settings to
values better suited to large servers with 12/16GB+ of memory.
This can improve performance on such servers, but will consume
more memory and may degrade performance on smaller systems.

PR:		224859
Sponsored by:	Absolight
08 Jan 2018 13:38:47
Original commit files touched by this commit  9.12.0.rc1_2
Revision:458413 This port version is marked as vulnerable.
mat search for other commits by this committer
Fix altlog_proglist warning when it contains more than the named service.

PR:		224951
Submitted by:	Trix Farrar
Sponsored by:	Absolight
03 Jan 2018 13:36:58
Original commit files touched by this commit  9.12.0.rc1_1
Revision:457965 This port version is marked as vulnerable.
sunpoet search for other commits by this committer
Update devel/json-c to 0.13

- Add TEST_TARGET
- While I'm here, fix shebang for net/opensips
- Bump PORTREVISION of dependent ports for shlib change

Changes:	https://github.com/json-c/json-c/blob/master/ChangeLog
PR:		224675
Exp-run by:	antoine
18 Dec 2017 17:58:42
Original commit files touched by this commit  9.12.0.rc1
Revision:456665 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 9.12.0rc1.

Sponsored by:	Absolight
23 Nov 2017 13:55:30
Original commit files touched by this commit  9.12.0.b2_1
Revision:454760 This port version is marked as vulnerable.
mat search for other commits by this committer
Add an extra check to make sure syslogd is correctly configured when
using chroot.

Sponsored by:	Absolight
09 Nov 2017 13:05:14
Original commit files touched by this commit  9.12.0.b2
Revision:453807 This port version is marked as vulnerable.
mat search for other commits by this committer
Update to 9.12.0b2.

Sponsored by:	Absolight
07 Nov 2017 15:48:16
Original commit files touched by this commit  9.12.0.b1_2
Revision:453667 This port version is marked as vulnerable.
mat search for other commits by this committer
Add a symlink to named's session-keyfile.

Using nsupdate -l, and chroot was broken because nsupdate could not find
the keyfile by itself.

PR:		223403
Submitted by:	Harald Schmalzbauer
Sponsored by:	Absolight
04 Nov 2017 11:43:35
Original commit files touched by this commit  9.12.0.b1_1
Revision:453453 This port version is marked as vulnerable.
dbaio search for other commits by this committer
Update license of ports using MPL (without version)

All ports now should use MPL[10|11|20] license.

Approved by:	portmgr (blanket)
03 Nov 2017 13:20:28
Original commit files touched by this commit  9.12.0.b1_1
Revision:453405 This port version is marked as vulnerable.
mat search for other commits by this committer
Enable the PYTHON option by default, it brings a few interesting DNSSEC
tools.

Sponsored by:	Absolight
25 Oct 2017 16:12:04
Original commit files touched by this commit  9.12.0.b1
Revision:452866 This port version is marked as vulnerable.
mat search for other commits by this committer
Add BIND9 9.12, currently in beta 1.

Changes:	https://lists.isc.org/pipermail/bind-announce/2017-October/001068.html
Sponsored by:	Absolight

Number of commits found: 40

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
wordpressDec 15
wordpressDec 15
wordpressDec 15
wordpressDec 15
wordpressDec 15
gitlab-ceDec 14
mbedtlsDec 14
typo3-8Dec 14
phpmyadminDec 12
firefoxDec 11
firefox-esrDec 11
libxulDec 11
linux-firefoxDec 11
linux-seamonkeyDec 11
linux-thunderbirdDec 11

14 vulnerabilities affecting 198 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities

Last updated:
2018-12-15 15:04:36


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 36129
Broken 121
Deprecated 1119
Ignore 379
Forbidden 3
Restricted 162
No CDROM 74
Vulnerable 39
Expired 4
Set to expire 1092
Interactive 0
new 24 hours 9
new 48 hours12
new 7 days42
new fortnight79
new month154

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2018 Dan Langille. All rights reserved.