1. 09 Jan, 2019 1 commit
  2. 09 Nov, 2018 1 commit
  3. 28 Jun, 2018 1 commit
    • Michał Kępień's avatar
      Add dns_zone_verifydb() · eaf1c0f6
      Michał Kępień authored
      Add a function for determining whether the supplied version of a mirror
      zone passes DNSSEC validation and is signed using a trusted key.  Define
      a new libdns result signifying a zone verification failure.
      eaf1c0f6
  4. 23 Feb, 2018 1 commit
  5. 27 Jul, 2017 2 commits
  6. 02 Nov, 2016 1 commit
  7. 27 Jun, 2016 1 commit
  8. 29 Oct, 2015 1 commit
  9. 02 Oct, 2015 1 commit
    • Evan Hunt's avatar
      [master] dnstap · b66b333f
      Evan Hunt authored
      4235.	[func]		Added support in named for "dnstap", a fast method of
      			capturing and logging DNS traffic, and a new command
      			"dnstap-read" to read a dnstap log file.  Use
      			"configure --enable-dnstap" to enable this
      			feature (note that this requires libprotobuf-c
      			and libfstrm). See the ARM for configuration details.
      
      			Thanks to Robert Edmonds of Farsight Security.
      			[RT #40211]
      b66b333f
  10. 05 Jul, 2015 1 commit
    • Mark Andrews's avatar
      4152. [func] Implement DNS COOKIE option. This replaces the · ce67023a
      Mark Andrews authored
                              experimental SIT option of BIND 9.10.  The following
                              named.conf directives are avaliable: send-cookie,
                              cookie-secret, cookie-algorithm and nocookie-udp-size.
                              The following dig options are available:
                              +[no]cookie[=value] and +[no]badcookie.  [RT #39928]
      ce67023a
  11. 27 May, 2015 1 commit
  12. 06 May, 2015 1 commit
  13. 05 May, 2015 1 commit
  14. 28 Oct, 2014 1 commit
  15. 30 May, 2014 2 commits
    • Tinderbox User's avatar
      update copyright notice · 803d8426
      Tinderbox User authored
      803d8426
    • Evan Hunt's avatar
      [master] rndc nta · 0cfb2473
      Evan Hunt authored
      3867.	[func]		"rndc nta" can now be used to set a temporary
      			negative trust anchor, which disables DNSSEC
      			validation below a specified name for a specified
      			period of time (not exceeding 24 hours).  This
      			can be used when validation for a domain is known
      			to be failing due to a configuration error on
      			the part of the domain owner rather than a
      			spoofing attack. [RT #29358]
      0cfb2473
  16. 04 Apr, 2013 1 commit
  17. 09 Jan, 2013 1 commit
  18. 04 Jan, 2013 2 commits
  19. 19 Dec, 2012 1 commit
  20. 10 Mar, 2012 1 commit
  21. 07 Mar, 2012 1 commit
  22. 21 Mar, 2011 1 commit
  23. 11 Jan, 2011 1 commit
  24. 10 Jan, 2011 1 commit
  25. 25 Feb, 2010 2 commits
  26. 12 Oct, 2009 1 commit
    • Evan Hunt's avatar
      2712. [func] New 'auto-dnssec' zone option allows zone signing · 77b8f88f
      Evan Hunt authored
      			to be fully automated in zones configured for
      			dynamic DNS.  'auto-dnssec allow;' permits a zone
      			to be signed by creating keys for it in the
      			key-directory and using 'rndc sign <zone>'.
      			'auto-dnssec maintain;' allows that too, plus it
      			also keeps the zone's DNSSEC keys up to date
      			according to their timing metadata. [RT #19943]
      77b8f88f
  27. 01 Mar, 2009 2 commits
  28. 25 Sep, 2008 1 commit
  29. 24 Sep, 2008 1 commit
  30. 19 Jun, 2007 1 commit
  31. 18 Jun, 2007 1 commit
  32. 17 Jun, 2005 1 commit
  33. 19 May, 2005 1 commit
  34. 29 Apr, 2005 1 commit
  35. 27 Apr, 2005 1 commit