Revisions of unbound
Marcus Rueckert (darix)
accepted
request 1045741
from
Wolfgang Frisch (wfrisch)
(revision 158)
- Tighten permissions (boo#1173619) - Add missing dependency: unbound-control-setup needs /usr/bin/openssl.
buildservice-autocommit
accepted
request 1032866
from
Factory Maintainer (factory-maintainer)
(revision 157)
baserev update by copy to link target
Marcus Rueckert (darix)
accepted
request 1010533
from
Michael Ströder (stroeder)
(revision 156)
update to 1.17.0
buildservice-autocommit
accepted
request 1006106
from
Marcus Rueckert (darix)
(revision 155)
baserev update by copy to link target
Marcus Rueckert (darix)
accepted
request 1005278
from
Michael Ströder (stroeder)
(revision 154)
update to 1.16.3: fixes Non-Responsive Delegation Attack (CVE-2022-3204)
buildservice-autocommit
accepted
request 992044
from
Marcus Rueckert (darix)
(revision 153)
baserev update by copy to link target
Marcus Rueckert (darix)
committed
(revision 152)
add bugrefences
Marcus Rueckert (darix)
accepted
request 992035
from
Michael Ströder (stroeder)
(revision 151)
Update to 1.16.2 which fixes the novel ghost domain issues CVE-2022-30698 and CVE-2022-30699.
buildservice-autocommit
accepted
request 989870
from
Factory Maintainer (factory-maintainer)
(revision 150)
baserev update by copy to link target
Marcus Rueckert (darix)
accepted
request 988331
from
Michael Ströder (stroeder)
(revision 149)
update to 1.16.1
buildservice-autocommit
accepted
request 983597
from
Darin Perusich (deadpoint)
(revision 148)
baserev update by copy to link target
Darin Perusich (deadpoint)
accepted
request 980515
from
Michael Ströder (stroeder)
(revision 147)
update to 1.16.0
buildservice-autocommit
accepted
request 974922
from
Marcus Rueckert (darix)
(revision 146)
baserev update by copy to link target
Marcus Rueckert (darix)
accepted
request 974920
from
Dirk Mueller (dirkmueller)
(revision 145)
- spec-cleaner - update to 1.15.0 - drop python2 packages - update to 1.15.0: This release has bug fixes for crashes that happened on heavy network usage. The default for the aggressive-nsec option has changed, it is now enabled. The ratelimit logic had to be reworked for the crash fixes. As a result, there are new options to control the behaviour of ratelimiting. The ratelimit-backoff and ip-ratelimit-backoff options can be used to control how severe the backoff is when the ratelimit is exceeded. The rpz-signal-nxdomain-ra option can be used to unset the RA flag, for NXDOMAIN answers from RPZ. That is used by some clients to detect that the domain is externally blocked. The RPZ option for-downstream can be used like for auth zones, this allows the RPZ zone information to be queried. That can be useful for monitoring scripts. Features - Fix #596: unset the RA bit when a query is blocked by an unbound RPZ nxdomain reply. The option rpz-signal-nxdomain-ra allows to signal that a domain is externally blocked to clients when it is blocked with NXDOMAIN by unsetting RA. - Add rpz: for-downstream: yesno option, where the RPZ zone is authoritatively answered for, so the RPZ zone contents can be checked with DNS queries directed at the RPZ zone. - Merge PR #616: Update ratelimit logic. It also introduces ratelimit-backoff and ip-ratelimit-backoff configuration options. - Change aggressive-nsec default to yes. Bug Fixes - Fix compile warning for if_nametoindex on windows 64bit.
Marcus Rueckert (darix)
accepted
request 943368
from
Callum Farmer (gmbr3)
(revision 144)
- Change to systemd-sysusers
Michael Ströder (stroeder)
accepted
request 937761
from
Michael Ströder (stroeder)
(revision 143)
update to 1.14.0
Michael Ströder (stroeder)
accepted
request 925668
from
Togan Muftuoglu (toganm)
(revision 142)
- Fix pidfile location - Fix pidfile location
Michael Ströder (stroeder)
accepted
request 911864
from
Michael Ströder (stroeder)
(revision 141)
update to 1.13.2
buildservice-autocommit
accepted
request 896882
from
Michael Ströder (stroeder)
(revision 140)
baserev update by copy to link target
Michael Ströder (stroeder)
accepted
request 896843
from
Togan Muftuoglu (toganm)
(revision 139)
Enable DNS over HTTPS which is possible since 1.12.0
Displaying revisions 21 - 40 of 178