Re: git: BIND: enable DNSSEC support for named and related tools

看板DFBSD_commit作者時間16年前 (2010/01/18 16:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串1/3 (看更多)
Shouldn't DNSSEC be off by default? http://security.FreeBSD.org/advisories/FreeBSD-SA-10:01.bind.asc http://www.google.com/search?q=3Ddnssec+site:cr.yp.to http://cr.yp.to/talks.html#2009.08.10 http://cr.yp.to/talks/2009.08.10/slides.pdf =AB 2009.08.10 09:30 60 minutes invited lecture Canada researchers [PDF slides] WOOT 2009. Le Centre Sheraton Hotel, Montreal. "Breaking DNSSEC." Keynote lecture. Abstract: More than two hundred sites around the world have installed DNSSEC during the past year, so attackers can finally gain hands-on experience with breaking DNSSEC servers. How quickly does DNSSEC leak private information? How powerful are today's DNSSEC servers when they are abused as denial-of-service amplifiers? How easy is it to forge DNS data from a DNSSEC server? =BB C. 2010/1/17 Jan Lentfer <lentferj@crater.dragonflybsd.org>: > > commit 9b280f55325116795c4c7a8faac79b452b7b9469 > Author: Jan Lentfer <Jan.Lentfer@web.de> > Date: =A0 Sun Jan 17 14:21:39 2010 +0100 > > =A0 =A0BIND: enable DNSSEC support for named and related tools by default= .. > > =A0 =A0 =A0 =A0* This adds -DOPENSSL and -lcrypto to effected Makefiles > > =A0 =A0 =A0 =A0* This patch also introduces NO_BIND_DNSSEC for make.conf > =A0 =A0 =A0 =A0 =A0to disable build of DNSSEC with BIND. > > Summary of changes: > =A0etc/defaults/make.conf =A0 =A0 =A0 =A0 =A0 =A0| =A0 =A01 + > =A0lib/libisc/Makefile =A0 =A0 =A0 =A0 =A0 =A0 =A0 | =A0 =A04 ++++ > =A0share/man/man5/make.conf.5 =A0 =A0 =A0 =A0| =A0 =A03 +++ > =A0usr.bin/dig/Makefile =A0 =A0 =A0 =A0 =A0 =A0 =A0| =A0 =A05 +++++ > =A0usr.bin/dnssec-keygen/Makefile =A0 =A0| =A0 =A05 +++++ > =A0usr.bin/dnssec-signzone/Makefile =A0| =A0 =A05 +++++ > =A0usr.bin/host/Makefile =A0 =A0 =A0 =A0 =A0 =A0 | =A0 =A05 +++++ > =A0usr.sbin/named-checkconf/Makefile | =A0 =A05 +++++ > =A0usr.sbin/named-checkzone/Makefile | =A0 =A05 +++++ > =A0usr.sbin/named/Makefile =A0 =A0 =A0 =A0 =A0 | =A0 =A04 ++++ > =A0usr.sbin/nslookup/Makefile =A0 =A0 =A0 =A0| =A0 =A05 +++++ > =A0usr.sbin/nsupdate/Makefile =A0 =A0 =A0 =A0| =A0 =A05 +++++ > =A0usr.sbin/rndc-confgen/Makefile =A0 =A0| =A0 =A05 +++++ > =A0usr.sbin/rndc/Makefile =A0 =A0 =A0 =A0 =A0 =A0| =A0 =A05 +++++ > =A014 files changed, 62 insertions(+), 0 deletions(-) > > http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/9b280f55325116795= c4c7a8faac79b452b7b9469 > > > -- > DragonFly BSD source repository
更多 C++. 的文章
文章代碼(AID): #1BL1L5o9 (DFBSD_commit)
更多 C++. 的文章
文章代碼(AID): #1BL1L5o9 (DFBSD_commit)