dnscrypt-proxy2 Flexible DNS proxy with support for encrypted protocols

2.0.34 dns =3 2.0.27Version of this port present on the latest quarterly branch.

Maintainer: egypcio@FreeBSD.org

Port Added: 2018-03-25 14:46:33

Last Update: 2019-12-09 13:04:04

SVN Revision: 519606

Also Listed In: security

License: ISCL

Description:

A flexible DNS proxy with support for modern encrypted DNS protocols such as DNSCrypt v2 and DNS-over-HTTP/2. WWW: https://github.com/jedisct1/dnscrypt-proxy

SVNWeb : Homepage

pkg-plist: as obtained via: make generate-plist

Expand this list (6 items)

1. /usr/local/share/licenses/dnscrypt-proxy2-2.0.34/catalog.mk
2. /usr/local/share/licenses/dnscrypt-proxy2-2.0.34/LICENSE
3. /usr/local/share/licenses/dnscrypt-proxy2-2.0.34/ISCL
4. @dir(_dnscrypt-proxy,_dnscrypt-proxy) etc/dnscrypt-proxy
5. @sample etc/dnscrypt-proxy/dnscrypt-proxy.toml.sample
6. sbin/dnscrypt-proxy

Collapse this list.

Dependency lines:

• dnscrypt-proxy2>0:dns/dnscrypt-proxy2

Conflicts:

CONFLICTS_INSTALL:

• dnscrypt-proxy

Conflicts Matches:

There are no Conflicts Matches for this port. This is usually an error.

To install the port: cd /usr/ports/dns/dnscrypt-proxy2/ && make install clean

To add the package: pkg install dnscrypt-proxy2

PKGNAME: dnscrypt-proxy2

Flavors: there is no flavor information for this port.

distinfo:

TIMESTAMP = 1575896242 SHA256 (DNSCrypt-dnscrypt-proxy-2.0.34_GH0.tar.gz) = 38ec7df2bdeff6d094d8975c0005c1d896a63b529cba417381b63fcf51d42303 SIZE (DNSCrypt-dnscrypt-proxy-2.0.34_GH0.tar.gz) = 2741556

Dependencies

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:

1. go : lang/go

Runtime dependencies:

1. ca_root_nss>=3.35 : security/ca_root_nss

There are no ports dependent upon this port

Configuration Options

===> The following configuration options are available for dnscrypt-proxy2-2.0.34: DOCS=on: Build and/or install documentation EXAMPLES=on: Build and/or install examples ===> Use 'make config' to modify these settings

USES:

go:modules

Master Sites:

1. https://codeload.github.com/DNSCrypt/dnscrypt-proxy/tar.gz/2.0.34?dummy=/

• 2018-04-17

  Affects: users of dns/dnscrypt-proxy2

  Author: egypcio@googlemail.com

  Reason: 
    DNSCrypt-Proxy 2 has been updated to 2.0.10 and the configuration file
    has changed from ${PREFIX}/etc/dnscrypt-proxy.toml to
    ${PREFIX}/etc/dnscrypt-proxy/dnscrypt-proxy.toml.
  
  

• port moved here from dns/dnscrypt-proxy on 2018-09-27
  REASON: Has expired: Deprecated by upstream, use dns/dnscrypt-proxy2 instead
  

dns/dnscrypt-proxy2: update 2.0.33 to 2.0.34

dns/dnscrypt-proxy2: update 2.0.31_1 to 2.0.33

Bump PORTREVISION after r517743 to force relinking.

Approved by:	araujo (mentor)
Differential Revision:	https://reviews.freebsd.org/D21854

dns/dnscrypt-proxy2: update 2.0.29_2 to 2.0.31

dns/dnscrypt-proxy2: sync stable 2.0.29 (37c9394)

Obtained
from:	https://github.com/DNSCrypt/dnscrypt-proxy/commit/37c939480d79deb9571290fbb62724d7c20f7432

dns/dnscrypt-proxy2: fix 'panic: runtime error' on 2.0.29

Reported by:	blakkheim (tj@openbsd.org)
Obtained from:	https://github.com/DNSCrypt/dnscrypt-proxy/issues/998

dns/dnscrypt-proxy2: update 2.0.28 to 2.0.29

dns/dnscrypt-proxy2: update 2.0.27 to 2.0.28

  * https://github.com/DNSCrypt/dnscrypt-proxy/blob/2.0.28/ChangeLog

Sponsored by:	TorBSD Diversity Project, TDP

Drop the ipv6 virtual category for d* category as it is not relevant anymore

Go ports: cleanup, finish transition to USES=go started with r505321 (cat.
audio-mail)

- Remove custom build/install targets left in place after r505321
- Switch to the new GO_TARGET tuple syntax introduced in r512001
- Switch to go:modules when upstream already uses them

Reviewed by:	tobik
Approved by:	araujo (mentor), portmgr (adamw)
Differential Revision:	https://reviews.freebsd.org/D21741

dns/dnscrypt-proxy2: update 2.0.25 to 2.0.27

Convert to UCL & cleanup pkg-message (categories d)

dns/dnscrypt-proxy2: update 2.0.23 to 2.0.25

Approved by:	mentors (implicit)

dns/dnscrypt-proxy2: update 2.0.22 to 2.0.23

  - .onion servers are now automatically ignored,
     if Tor routing is not enabled;
  - caching of server addresses has been improved,
     especially when using proxies;
  - DNSCrypt communications are now automatically forced to using TCP,
     when a SOCKS proxy has been set up.

 https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.23/ChangeLog

Approved by:	mentors (implicit)

dns/dnscrypt-proxy2: update 2.0.19 to 2.0.22

Approved by:	araujo (mentor)
Differential Revision:	https://reviews.freebsd.org/D19624

use @FreeBSD.org as MAINTAINER instead of my private address

  benchmarks/vegeta
  devel/busybee
  devel/git-lfs
  devel/gnu-efi
  devel/hub
  devel/libe
  devel/py-fabric3
  devel/py-fabric3
  dns/dhisd
  dns/dnscrypt-proxy2
  dns/go-geodns
  emulators/hatari
  irc/weechat-otr

dns/dnscrypt-proxy2: update 2.0.18 to 2.0.19

  - The value for netprobe_timeout was read from the command-line,
      but not from the configuration file any more. This is a regression
      introduced in the previous version, that has been fixed;
  - The default value for netprobe timeouts has been raised to 60 seconds;
  - A hash of the body is added to query parameters when sending DoH
      queries with the POST method in order to work around badly configured
      proxies.

https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.19/ChangeLog

Approved by:	araujo (mentor)
Differential Revision:	https://reviews.freebsd.org/D18341

dns/dnscrypt-proxy2: update 2.0.17 to 2.0.18

  - official builds now support TLS 1.3;
  - timeout for the initial connectivity check can be set from the cli;
  - an 'Accept:' header is now always sent with GET queries;
  - BOM is now ignored in configuration files;
  - HTTP and HTTPS proxies are now supported for DoH servers.

  https://github.com/jedisct1/dnscrypt-proxy/blob/2.0.18/ChangeLog

Approved by:	araujo (mentor)
Differential Revision:	https://reviews.freebsd.org/D18005

update to version 2.0.17;

  changes:
https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.17/ChangeLog

  while here, silence portlint
    move USE_* variables to a point after USES;
    extra item placed in the USES/USE_x section got a new line, for example,
"GH_ACCOUNT".

Approved by:	beat (mentor), rene (mentor)
Differential Revision:	https://reviews.freebsd.org/D17509

dns/dnscrypt-proxy2: fix build after deps update

While here, use ${GO_BUILDFLAGS}

PR:		231063
Submitted by:	Vinicius Zavam <egypcio@googlemail.com> (maintainer

dns/dnscrypt-proxy2: update to 2.0.16

PR:		229679
Submitted by:	Vinicius Zavam <egypcio@googlemail.com> (maintainer)

dns/dnscrypt-proxy2: Update to 2.0.15

Changes:	https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.15/ChangeLog

Approved by:	egypcio@googlemail.com (maintainer, implicit)

dns/dnscrypt-proxy2: Update to 2.0.14

Changes:	https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.14/ChangeLog

Approved by:	egypcio@googlemail.com (maintainer, implicit)

dns/dnscrypt-proxy2: Update to 2.0.12

Changes:	https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.12/ChangeLog

Approved by:	egypcio@googlemail.com (maintainer, implicit)

dns/dnscrypt-proxy2: Update to 2.0.11

Changes:	https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.11/ChangeLog

Approved by:	egypcio@googlemail.com (maintainer, implicit)

dns/dnscrypt-proxy2: Add mac_portacl option in rc script

Version 2 of dnscrypt-proxy is written in Go and therefore isn't capable
of dropping privileges after binding to a low port on FreeBSD.

By default, this port's daemon will listen on port 5353 (TCP/UDP).

With this option it's possible to bind it and listen on port 53 (TCP/UDP)
with mac_portacl(4) kernel module (network port access control policy).
For this add dnscrypt_proxy_mac_portacl_enable=YES in your rc.conf.
The dnscrypt-proxy startup script will load mac_portacl and add a rule
where %%USER%% user will be able to bind on port 53 (TCP/UDP). This port
can be changed by dnscrypt_proxy_mac_portacl_port variable in your rc.conf.
You also need to change dnscrypt-proxy config file to use port 53.

Suggested by:	feld
Approved by:	egypcio@googlemail.com (maintainer)
Differential Revision:	https://reviews.freebsd.org/D15151

dns/dnscrypt-proxy2: Update to 2.0.10

Main changes in the port:
  - Improve instructions for using dnscrypt-proxy2 together with unbound. [1]
  - Add dnscrypt_proxy_suexec option for users who want to run the daemon as
    root.
  - Move the configuration file from ${PREFIX}/etc/dnscrypt-proxy.toml to
    ${PREFIX}/etc/dnscrypt-proxy/dnscrypt-proxy.toml, because by default
    temporary files will use the path of the config file.
    This fixes a permission issue when fetching the public resolvers list.

Changes:	https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.10/ChangeLog

PR:		227129 [1]
Submitted by:	egypcio@googlemail.com (maintainer)
Reported by:	erik@nordstroem.no [1]
Differential Revision:	https://reviews.freebsd.org/D15024

dns/dnscrypt-proxy2: Update to 2.0.8

Changes:	https://raw.githubusercontent.com/jedisct1/dnscrypt-proxy/2.0.8/ChangeLog

Approved by:	egypcio@googlemail.com (maintainer, implicit)

dns/dnscrypt-proxy2: Improve information/texts

Submitted by:	tj@mrsk.me (email)
Approved by:	egypcio@googlemail.com (maintainer, irc)

Correctly use PORTDOCS and PORTEXAMPLES.

Sponsored by:	Absolight

Add dns/dnscrypt-proxy2: Flexible DNS proxy with support for encrypted protocols

A flexible DNS proxy, with support for modern encrypted DNS protocols such as
DNSCrypt v2 and DNS-over-HTTP/2.

WWW: https://github.com/jedisct1/dnscrypt-proxy

Without a repocopy because it's a new port, rewritten from scratch.

PR:		225821
Submitted by:	Vinicius Zavam <egypcio@googlemail.com>
Differential Revision:	https://reviews.freebsd.org/D14319

8 vulnerabilities affecting 45 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2019-12-13 20:37:17