summaryrefslogtreecommitdiffstats
path: root/dns/bind96
Commit message (Collapse)AuthorAgeFilesLines
* For the ports that I maintain, do the following as appropriate:dougb2005-10-291-1/+5
| | | | | | | | | 1. Add myself as a backup master site (Sourceforge and CPAN ports already have good enough coverage, so skip them). 2. For all ports that have them, download the PGP signature files. 3. For ports in 2, add a verify target to the Makefile 4. For ports where I was already providing a master site, update the URL. 5. Pet portlint in a couple of places.
* This issue was researched by glebius, and this patch wasdougb2005-08-181-0/+23
| | | | | | | | | | | | | | | incorporated by ISC into the next version of BIND. The patch addresses a problem with high-load resolvers which hit memory barriers. Without this patch, running the resolving name server out of memory would lead to "unpredictable results." Of course, the canonical answer to this problem is to put more memory into the system, however that is not always possible, and the code should be able to handle this situation gracefully in any case. Approved by: portmgr (krion)
* ISC staff has informed me that in BIND 9.3.x, threads are always adougb2005-06-291-1/+3
| | | | | bad idea, so disable them in all cases unless the user has affirmatively requested this through the define.
* 1. The OPTIONS stuff isn't working the way it should according to reports,dougb2005-03-171-4/+2
| | | | | | so rip it out until I have a chance to debug it. 2. Improve the comment about deprecating an old knob.
* Upgrade to 9.3.1, the latest version from ISC. This version containsdougb2005-03-133-32/+23
| | | | | | | | | | | | | | | | | | several important fixes, including a remote (although unlikely) exploit. See the CHANGES file for details. All users of BIND 9 are highly encouraged to upgrade to this version. Changes to the port include: 1. Remove ISC patch to 9.3.0 that addressed the remote exploit 2. Change to OPTIONS, and thereby 3. --enable-threads is now the default. Users report that the new thread code in 9.3.x works significantly better than the old on all versions of FreeBSD. 4. Add a temporary shim for the old PORT_REPLACES_BASE_BIND9 option. The OPTIONS framework requires knobs to start with WITH_ or WITHOUT_ 5. Remove patch that shoehorned named.conf.5 into the right place, it has been fixed in the code.
* Include a patch from ISC to deal with the following vulnerability:dougb2005-01-282-1/+13
| | | | | | | | | | | | | | | | | | | | | | | Name: BIND: Self Check Failing [Added 2005.25.01] Versions affected: BIND 9.3.0 Severity: LOW Exploitable: Remotely Type: Denial of Service Description: An incorrect assumption in the validator (authvalidated) can result in a REQUIRE (internal consistancy) test failing and named exiting. Workarounds: Turn off dnssec validation (off by default) at the options/view level. dnssec-enable no; Active Exploits: None known Bump PORTREVISION accordingly. It should be noted that the vast majority of users would not have DNSSEC enabled, and therefore are not vulnerable to this bug.
* The parens around the OSVERSION test were fatal for < 4.9, and did notdougb2004-09-271-1/+1
| | | | | | | | provide anything useful for newer systems, so remove them. PR: ports/72118 Submitted by: Michel Lavondes <fox@vader.aacc.cc.md.us> Approved by: portmgr (eik)
* Update to BIND 9.3.0, the latest from ISC. This version has severaldougb2004-09-246-27/+59
| | | | | | | | | | | | | | | | significant updates, not the least of which is the new and improved DNSSEC code based on the latest standards (including DS). Various updates to the port, including: 1. Download the PGP signature 2. If running on ${OSVERSION} >= 503000, configure with threads 3. Update pkg-descr re IPv6 RRs 4. Update pkg-message to reflect a world with 6-current There is also a patch to correct a man page installation error. This problem should be fixed in the next release. Approved by: portmgr (marcus)
* The ringserver sites don't have the latest BIND 9.dougb2004-04-041-2/+1
| | | | Submitted by: fenner's distfile survey
* DISTNAME is a slightly less painful way of dealing with wackydougb2004-03-141-2/+1
| | | | version numbers.
* Now that the SIZE thing has stabilized, add it to the ports I maintain.dougb2004-03-141-0/+1
|
* I specifically stated that I did not want to bump portepoch for this port.dougb2003-10-281-1/+0
| | | | | | | | | | I realize that my error in version numbering previously caused some confusion about 9.2.3 being a more up to date version than 9.2.3.4, but this will quickly be resolved with the next version, and affected only a few users who installed the release candidate. The portepoch change is permanent, and perpetuates a silly kludge for no good reason. Please do not change this again without discussing it with me.
* Fix removal of the last digit in the version number issue.edwin2003-10-281-0/+1
| | | | | | | [~/cvs/ports/dns/bind9] edwin@k7>pkg_version -t 9.2.3.4 9.2.3 > [~/cvs/ports/dns/bind9] edwin@k7>pkg_version -t 9.2.3.4 9.2.3,1 <
* Upgrade to the 9.2.3 release versiondougb2003-10-242-3/+3
|
* Unbreak(?) USE_OPENSSL support for people that don't have it in the basedougb2003-10-021-7/+2
| | | | Submitted by: A cast of thousands
* Upgrade to version 9.2.3rc4.dougb2003-09-252-4/+4
| | | | | | | | The 9.2.3 code has many many bugs fixed from 9.2.2, check CHANGES for more information. The rc4 code has the delegation-only options. Check the ARM for information on how to enable it.
* DOCSDIR'ifydougb2003-09-251-26/+26
|
* Chase repocopies towards ports/dnsedwin2003-09-051-1/+1
| | | | | | PR: ports/56020 Submitted by: Kimura Fuyuki <fuyuki@nigredo.org> Approved by: portmgr
* Massive repo-copies request: net->dns (partly devel->dns)edwin2003-09-051-1/+1
| | | | | | PR: ports/56020 Submitted by: Kimura Fuyuki <fuyuki@nigredo.org> Approved by: portmgr
* Display the new pkg-message after port build.dougb2003-06-071-0/+2
|
* Add a message to explain how to configure randomness, and rndc.dougb2003-06-071-0/+22
|
* * Update to version 9.2.2, the latest from ISC. This version contains nodougb2003-03-042-3/+4
| | | | | | | new features compared to 9.2.1, only bug fixes. Users of BIND 9 are highly encouraged to upgrade. * Switch to Makefile COMMENT
* Switch to Makefile commentdougb2003-03-041-1/+0
|
* Add my name and e-maildougb2003-03-041-0/+3
|
* Upgrade to 9.2.2rc1. This version has been available for several months, anddougb2003-01-263-24/+28
| | | | | | | | | is widely considered to be more stable than 9.2.1. I would have preferred a -REL version, but better is better. * Clean up the Makefile a little * Just say no to threads * Add the PORT_REPLACES_BASE magic, similar to the bind8 port
* typoijliao2002-08-011-1/+1
| | | | Submitted by: Kimura Fuyuki <fuyuki@hadaly.org>
* add MASTER_SITE_ISC (1) and apply themijliao2002-08-011-4/+2
| | | | | PR: 41218 Submitted by: Kimura Fuyuki <fuyuki@hadaly.org> (1)
* Update to the latest release versiondougb2002-05-222-4/+4
|
* Upgrade to 9.2.1rc2, the latest from ISC. Numerous bugs were fixed,dougb2002-04-082-4/+4
| | | | see /usr/local/share/doc/bind9/CHANGES after installation for details.
* Fix PORTVERSION so that wacky things don't happen down the road.dougb2002-03-171-7/+9
| | | | | | In my previous commit I forgot to mention that 'pkg_add -r bind' is only half the rationale for changing PORTNAME. The other half is so that people who really want to can 'pkg_add -r bind9'.
* Upgrade to the latest release candidate, 9.2.1rc1. Numerous 9.x bugsdougb2002-03-173-53/+93
| | | | | | | | | | are fixed in this version, however BIND 9 is still recommended only for early adopters, and those that have time to closely monitor their name service. * Change PORTNAME to bind9 so that 'pkg_add -r bind' does the right thing * Use the local version of openssl, and disable threads on all but the most recent -current. Thread support is still considered experimental.
* Add some mirrorsdougb2001-08-151-0/+2
|
* Update port version to ISC's latest stable releasedougb2001-07-242-2/+8
|
* Upgrade to 9.1.3rc1, whose most significant change is a fix fordougb2001-05-282-2/+2
| | | | some IXFR problems.
* Upgrade to BIND 9.1.2-Release. There is no newe functionality, butdougb2001-05-093-2/+3
| | | | | it is highly recommended that all users of BIND 9 upgrade to this maintenance release.
* Update to the actual release version of 9.1.1. If you're usingdougb2001-04-032-2/+2
| | | | bind 9, upgrade to this version.
* Latest bug fixes, FOR GREAT JUSTICE !!dougb2001-03-272-2/+2
|
* Latest bug fixes and documentation updates.dougb2001-03-232-2/+2
|
* Latest bug fixes, no features added.dougb2001-03-192-2/+2
|
* Upgrade to ISC's latest. No new features, but a few useful bug fixes.dougb2001-03-102-2/+2
|
* Add more master sites.kuriyama2001-03-021-1/+2
| | | | Approved by: maintainer
* Update to ISC's latestdougb2001-02-273-2/+3
|
* Latest update from ISC. Truly just bugfixes.dougb2001-02-132-2/+2
|
* Update to ISC's bug fix release. For those who wish to (or need to)dougb2001-02-083-18/+2
| | | | use BIND 9 this upgrade is highly recommended.
* I knew I forgot something... the patch is reported to substantiallydougb2001-02-071-0/+1
| | | | improve the resistance to DOS, so this is worth a portrevision bump.
* Major overhaul, including an updated man/plist, patching the man pagesdougb2001-02-073-4/+71
| | | | | | | | | | | to make the location of etc/ files prefix-safe. Install a sample rndc.conf file. Since rndc won't start without one the user should have an example to work from. Add the installation of various docs wrapped in a NOPORTDOCS test. Last but not least, add a patch that turns off the debugging code ISC left on by default. This should help solve the problems with misbehaving assert's, related to nmap and other causes.
* Take over maintainership of the BIND's. This is something I use every day,dougb2001-01-311-1/+1
| | | | so I'm on top of the security advisories, etc.
* Update to 9.1.0; replace Makefile.in patch with perl regex.will2001-01-214-17/+12
| | | | Requested by: Joong Hyun Kim <better@ns1.betterbox.net>
* Add CONFIGURE_ARGS so that named/lwresd put their pid filesade2000-12-011-1/+2
| | | | in the "right" place (/var/run), as opposed to ${PREFIX}/var/run
* Update to 9.0.1dougb2000-11-193-16/+23
| | | | | PR: ports/22941 Submitted by: Leif Neland, leifn@neland.dk
OpenPOWER on IntegriCloud