ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
23,654 Commits 589 Branches 805 Tags
33c548251110c6991d017a1e071959972b6664d1
Commit Graph

6 Commits

Author SHA1 Message Date
Mark Andrews
bb7971417a 4157. [protocol] Update experimental SIT code to use the EDNS COOKIE 
option code point (10).  This is the minimal change
                        required to use the new code point. [RT #39928]
 2015-07-07 15:43:04 +10:00
Evan Hunt
1c13a150ed [v9_10] dig can now learn the SIT value when retrying 
4093.	[func]		Dig now learns the SIT value from truncated
			responses when it retries over TCP. [RT #39047]
 2015-04-06 23:18:27 -07:00
Mark Andrews
e30f7e362d 3934. [bug] Catch bad 'sit-secret' in named-checkconf. Improve 
sit-secrets documentation. [RT #36980]

(cherry picked from commit 7c73ac5e13)
 2014-08-29 14:36:55 +10:00
Evan Hunt
999926955b [master] fix test error 2014-02-21 08:05:40 -08:00
Mark Andrews
e676a59686 update copyrights 2014-02-20 10:53:11 +11:00
Mark Andrews
b5f6271f4d 3744. [experimental] SIT: send and process Source Identity Tokens 
(which are similar to DNS Cookies by Donald Eastlake)
                        and are designed to help clients detect off path
                        spoofed responses and for servers to detect legitimate
                        clients.

                        SIT use a experimental EDNS option code (65001).

                        SIT can be enabled via --enable-developer or
                        --enable-sit.  It is on by default in Windows.

                        RRL processing as been updated to know about SIT with
                        legitimate clients not being rate limited. [RT #35389]
 2014-02-19 12:53:42 +11:00