pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/security/dnssec-tools



Module Name:    pkgsrc
Committed By:   pettai
Date:           Sat Mar 12 20:07:19 UTC 2011

Modified Files:
        pkgsrc/security/dnssec-tools: Makefile distinfo

Log Message:
1.8:

 - New Features:
    - zonesigner, rollerd
                    - Made changes so that these tools are more compatible
                      with recent versions of Bind
                    - The zone_errors configuration parameter allows a zone-
                      specific maximum to be set.  Once exceeded, that zone
                      will be skipped rather than allowing rollover to continue.
    - blinkenlights
                    - Recognizes when rollerd abruptly quits, so error messages
                      aren't spewed interminably.
    - ZonFile::Fast - Fixed parsing of DS records containing spaces and
                      parsing of mname and rname SOA fields
                    - Added support for parsing KEY records
    - keyrec.pm     - Made changes to properly lock keyrec files before
                      writing to them.
                    - Begun process of deprecating keyrec_open().
    - mapper:       - added a new option: --node-size for mapping
                      complex zones.
    - dnspktflow:   - added two new options:
                      --layout-style for selecting the layout style to use
                      --node-size for mapping complex zones.
                    - Add new (default) option to cluster
                      authoritative nodes together to help better
                      understand the relationships between traffic
                      patterns and authoritative name server/zone arrangement.
    - libval:       - Now distributed with the Root TA.
                    - Added stricter checks for openssl SHA-256 support in
                      configure.
                    - Added several improvements that allow the validator to
                      lookup information within provably insecure zones that
                      do not handle EDNS0 requests nicely. This includes
                      adding support for turning off EDNS0 when traversing a
                      name hierarchy that leads to a provably insecure zone,
                      EDNS0 fallback support, and additional checks to check
                      the sanity of response data.
                    - Fixed certain bugs in CNAME handling and in the
                      validation of proofs accompanying wildcard responses,
                      referrals and alias chains.
                    - Fixed support for RSADSA and RSASHA-512 signature
                      validation.
    - Mac OSX:      - Added a Ports file for mac ports
                    - updated the fink build spec

 - many other miscellaneous bug fixes and improvements.


To generate a diff of this commit:
cvs rdiff -u -r1.4 -r1.5 pkgsrc/security/dnssec-tools/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/security/dnssec-tools/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.



Home | Main Index | Thread Index | Old Index