ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
17,758 Commits 589 Branches 805 Tags
c87f15dac8bb22ffb3ebf044ee48ce570c87948b
Commit Graph

872 Commits

Author SHA1 Message Date
Automatic Updater
3ce014e9af regen HEAD 2010-09-22 01:13:54 +00:00
Paul Ebersman
3b9a5b7cdd fixed typo from man.dnysssec to man.dnssec. 
reviewed by jreed, currently just fixed in HEAD.
 2010-09-21 19:47:57 +00:00
Automatic Updater
fde6bfde6e regen HEAD 2010-08-21 01:14:00 +00:00
Mark Andrews
20599f3d0e 2946. [doc] Document the default values for the minimum and maximum zone refresh and retry values in the ARM. [RT #21886] 2010-08-20 01:31:10 +00:00
Automatic Updater
c25877b363 regen HEAD 2010-08-20 01:14:19 +00:00
Mark Andrews
38abdbf816 2945. [doc] Update empty-zones list in ARM. [RT #21772] 
2944.   [maint]         Remove ORCHID prefix from built in empty zones.
                        [RT #21772]
 2010-08-20 00:13:26 +00:00
Automatic Updater
3acf5eb97c regen HEAD 2010-08-17 01:15:38 +00:00
Mark Andrews
c6f4972c74 2943. [func] Add support to load new keys into managed zones 
without signing immediately with "rndc loadkeys".
                        Add support to link keys with "dnssec-keygen -S"
                        and "dnssec-settime -S".  [RT #21351]
 2010-08-16 22:21:07 +00:00
Automatic Updater
82d13321f4 regen HEAD 2010-08-12 01:14:30 +00:00
Evan Hunt
cfd262045c 2936. [func] Improved configuration syntax and multiple-view 
support for addzone/delzone feature (see change
			#2930).  Removed "new-zone-file" option, replaced
			with "allow-new-zones (yes|no)".  The new-zone-file
			for each view is now created automatically, with
			a filename generated from a hash of the view name.
			It is no longer necessary to "include" the
			new-zone-file in named.conf; this happens
			automatically.  Zones that were not added via
			"rndc addzone" can no longer be removed with
			"rndc delzone". [RT #19447]
 2010-08-11 18:14:20 +00:00
Automatic Updater
7c6b9b2638 regen HEAD 2010-07-10 01:14:20 +00:00
Evan Hunt
bf9b852c3e 2929. [bug] Improved handling of GSS security contexts: 
- added LRU expiration for generated TSIGs
			 - added the ability to use a non-default realm
                         - added new "realm" keyword in nsupdate
			 - limited lifetime of generated keys to 1 hour
			   or the lifetime of the context (whichever is
			   smaller)
			[RT #19737]
 2010-07-09 05:13:15 +00:00
Tatuya JINMEI 神明達哉
4c517d66b5 canceled previous commit (wrong branch) 2010-07-01 19:26:08 +00:00
Tatuya JINMEI 神明達哉
cd98628ca6 regen 2010-07-01 19:19:27 +00:00
Automatic Updater
1238b38c9f regen HEAD 2010-06-26 01:14:19 +00:00
Mark Andrews
bf13e709db 2924. [func] 'rndc secroots' dump a combined summary of the 
current managed keys combined with trusted keys.
                        [RT #20904]
 2010-06-25 03:24:05 +00:00
Automatic Updater
07ee99c7d0 regen HEAD 2010-06-23 01:14:18 +00:00
Mark Andrews
c5ff97f471 2920. [func] Allow 'filter-aaaa-on-v4' to be applied selectively 
to IPv4 clients.  New acl 'filter-aaaa' (default any).
 2010-06-22 06:16:34 +00:00
Automatic Updater
bef75d63d7 regen HEAD 2010-05-19 01:14:14 +00:00
Automatic Updater
e1263b4b9c regen HEAD 2010-05-18 01:14:20 +00:00
Automatic Updater
0284e57b9b regen HEAD 2010-05-15 01:14:25 +00:00
Mark Andrews
778a01b1aa 2893. [bug] Improve managed keys support. New named.conf option 
managed-keys-directory. [RT #20924]
 2010-05-14 04:48:28 +00:00
Rob Austein
b008ad3de2 Update logo 2010-04-20 02:30:06 +00:00
Automatic Updater
83f43b00a5 regen HEAD 2010-03-10 01:14:18 +00:00
Automatic Updater
6c8a888822 regen HEAD 2010-03-05 01:14:15 +00:00
Automatic Updater
49853562e2 regen HEAD 2010-02-25 11:13:38 +00:00
Mark Andrews
0cae66577c 2852. [bug] Handle broken DNSSEC trust chains better. [RT #15619] 2010-02-25 04:39:13 +00:00
Automatic Updater
21a5f882a1 regen HEAD 2010-02-07 01:14:12 +00:00
Mark Andrews
52bf33a5bc copyright notice 2010-02-06 07:42:02 +00:00
Automatic Updater
44d0f0256f regen 2010-02-04 01:14:17 +00:00
Automatic Updater
f1c89cb4f5 update copyright notice 2010-02-03 23:49:07 +00:00
Evan Hunt
0b24b2d3c4 2848. [doc] Moved README.dnssec, README.libdns, README.pkcs11 and 
README.rfc5011 into the ARM. [RT #20899]
 2010-02-03 01:31:49 +00:00
Automatic Updater
4a5d8786ed regen 2010-01-23 01:13:56 +00:00
Mark Andrews
fd3a378353 2844. [doc] notify-delay default in ARM was wrong. It should have 
been five (5) seconds.
 2010-01-23 00:33:21 +00:00
Automatic Updater
a3416b0a1b regen 2010-01-20 01:14:19 +00:00
Automatic Updater
4dea9e5971 regen 2010-01-17 01:14:02 +00:00
Automatic Updater
49644c0c8f update copyright notice 2010-01-08 23:51:44 +00:00
Automatic Updater
fdd80e9a55 regen 2010-01-08 01:14:09 +00:00
Automatic Updater
a30c7003af update copyright notice 2010-01-07 23:48:54 +00:00
Evan Hunt
0f66aced26 2834. [bug] HMAC-SHA* keys that were longer than the algorithm 
digest length were used incorrectly, leading to
			interoperability problems with other DNS
			implementations.  This has been corrected.
			(Note: If an oversize key is in use, and
			compatibility is needed with an older release of
			BIND, the new tool "isc-hmac-fixup" can convert
			the key secret to a form that will work with all
			versions.) [RT #20751]
 2010-01-07 21:52:12 +00:00
Automatic Updater
d856585f5f regen 2009-12-29 01:14:03 +00:00
Automatic Updater
7a0d680aa5 regen 2009-12-19 01:14:05 +00:00
Evan Hunt
19a6c40c37 2810. [doc] Clarified the process of transitioning an NSEC3 zone 
to insecure. [RT #20746]
 2009-12-18 07:56:29 +00:00
Automatic Updater
90c38ab4e6 regen 2009-12-17 01:13:46 +00:00
Automatic Updater
a8d090b362 update copyright notice 2009-12-04 22:32:31 +00:00
Automatic Updater
fc2381b901 new 2009-12-04 22:23:33 +00:00
Automatic Updater
e2e4d32199 regen 2009-12-04 22:22:27 +00:00
Mark Andrews
71ba75c604 2803. [port] win32: Install named-journalprint, nsec3hash, arpaname 
and genrandom under windows. [RT #20670]

2802.   [cleanup]       Rename journalprint to named-journalprint. [RT #20670]
 2009-12-04 21:59:24 +00:00
Mark Andrews
3d17a3ba61 2801. [func] Detect and report records that are different according 
to DNSSEC but are sematically equal according to plain
                        DNS.  Apply plain DNS comparisons rather than DNSSEC
                        comparisons when processing UPDATE requests.
                        dnssec-signzone now removes such semantically duplicate
                        records prior to signing the RRset.

                        named-checkzone -r {ignore|warn|fail} (default warn)
                        named-compilezone -r {ignore|warn|fail} (default warn)

                        named.conf: check-dup-records {ignore|warn|fail};
 2009-12-04 21:09:34 +00:00
Automatic Updater
089c63b69c regen 2009-12-04 01:13:45 +00:00