Up to [cvs.NetBSD.org] / pkgsrc / net / powerdns
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
*: revbump for icu downgrade
*: recursive bump for icu 76.1 shlib bump
*: Recursive revbump from Boost 1.86.0
revbump after icu and protobuf updates
*: recursive bump for gnutls p11-kit option (existing installations need the bl3.mk included, but it's now only optionally included)
revbump due to security/botan2 update
revbump for boost-libs
*: recursive bump for icu 74.1
*: bump for openssl 3
revbump for boost
revbump after textproc/icu update
*: Recursive revbump from Boost 1.81.0
powerdns: update to 4.6.4 Bug Fixes: - pdnsutil edit-zone, detect capitalization changes in LUA, TXT and SPF records - initialize zone cache after dropping privileges; Detect invalid bytes in makeBytesFromHex() - Log NULL for nullptr-bound properties instead of dereferencing - LUA records: we only need one IsUpOracle checker thread - axfr-retriever: abort on chunk with TC set - use getInnerRemote() for the remotes ring Full changelog: https://docs.powerdns.com/authoritative/changelog/4.6.html#change-4.6.4
massive revision bump after textproc/icu update
*: bump PKGREVISION for libunistring shlib major bump
powerdns: Update to 4.6.3. The changelogs are very long and unwieldly, even trying to use the raw versions as they're written in RST, so please see the following URLs for the full list of changes (which are many) since 4.4.1: https://doc.powerdns.com/authoritative/changelog/4.6.html https://doc.powerdns.com/authoritative/changelog/4.5.html https://doc.powerdns.com/authoritative/changelog/4.4.html While here clean up various pkglint warnings.
revbump for textproc/icu update
*: recursive bump for botan-devel shlib bump
*: Recursive revbump from boost 1.78.0
revbump for icu and libffi
revbump for boost-libs
revbump for boost-libs
revbump for textproc/icu
net/powerdns: Update to 4.4.1 * Released: 8th of February 2021 * Improvements: - debian packaging update - dockerfiles: do not claim equivs-dummy is built from the pdns source package - Fix missing #include for gcc-11 - lmdb: Do a mdb_readers_check to clean up stale readers on database load * Bug Fixes: - fix TCP answer counters - run deleteDomain() inside a transaction - lmdb: do not reuse backend that has seen corrupted data - lmdb: serialise LMDBBackend construction to ensure only a single schema upgrade is attempted - backport some asan/ubsan fixes - pdnsutil edit-zone: do not exit on ZoneParser exception Full changelog: https://doc.powerdns.com/authoritative/changelog/4.4.html#change-4.4.1
*: Recursive revbump from boost-1.75.0
net/powerdns: Update to 4.4.0 Security fix: * This release drops GSS/TSIG support, please see PowerDNS Security Advisory 2020-06 https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-06.html Changelog: * New features: - the LMDB backend now supports long record content, making it production ready for everybody - the SVCB and HTTPS record types are supported, with limited additional processing transaction handling in the 2136 handler and the HTTP API was again improved a lot, avoiding various spurious issues users may have noticed if they do a lot of changes a new setting (consistent-backends) offers a roughly 30% speedup, subject to conditions - we finally emit Prometheus metrics! * Improvements: - don’t log trusted-notification-proxy notify at error level - Stop using incbin and use od & sed to generate constant string data. * Bug Fixes: - clear the LMDB set state when performing a new lookup or list to prevent corruption cases - SVCB: Correctly parse and print unknown params - fix direct-dnskey in AXFR-out
*: Recursive revbump from textproc/icu-68.1
net/powerdns: Update to 4.2.2 Changes since 4.2.1: * Released: - 9th of April 2020 * New Features: - api: add includerings option to statistics endpoint * Improvements: - cache: strictly enforce maximum size, and improve cleanup routine * Bug Fixes: - fix records ending up in wrong packet section - avoid IXFR-in corruption when deltas come in close together. Please see the IXFR-in corruption upgrade notes - fix out-of-bound access for zero length "serialized" string when using lmdbbackend. - bind backend: pthread_mutex_t should be inited and destroyed and not be copied * Reference: - https://doc.powerdns.com/authoritative/changelog/4.2.html#change-4.2.2
Revbump for icu
revbump after updating security/nettle
net/powerdns: remove no-op SUBST block
revbump after boost update
Recursive revision bump after textproc/icu update
powerdns: updated to 4.2.1 4.2.1 This release fixes several bugs and makes a few features more robust or intuitive. It also contains a few performance improvements for API users. New Features Add SLAVE-RENOTIFY zone metadata support Add configurable timeout for inbound AXFR Add CentOS 8 as builder target gmysql backend, add an option to send the SSL capability flag Improvements API: reduce number of database connections Register a few known RR types and remove an unknown one bindbackend: use metadata for also-notifies as well pdnsutil increase-serial: under SOA-EDIT=INCEPTION-EPOCH, bump as if it is EPOCH API: optionally do not return dnssec info in domain list Basic validation of $GENERATE parameters Bug Fixes LUA view: do not crash on empty IP list API: Accept headers without spaces Avoid database state-related SERVFAILs after a LUA error Just before 4.2.0, some SQL-related fixes broke edit-zone and other features with the LMDB backend. This has been fixed now. rfc2136, pdnsutil: somewhat improve duplicate record handling 4.2.0 Compared to the last release candidate, one more bug has been fixed. The LMDB backend is incomplete in this version. Slaving zones works, loading zones with pdnsutil works, but more fine grained edits (using edit-zone, or the REST API) fail. We hope to fix this soon in a 4.2.x release. For an overview of features new since 4.1.x, please see the 4.2.0 announcement blog post. Bug Fixes bind getAllDomains: ignore per-zone exceptions
*: Recursive revision bump for openssl 1.1.1.
*: Recursive revbump from devel/boost-libs
Recursive revbump from boost-1.71.0
Recursive revbump from boost-1.70.0
powerdns: updated to 4.1.8 4.1.8 Bug Fixes Fix rectify for ENT records in narrow zones. Prevent leak of file descriptor if running out of ports for incoming AXFR. EL6: fix CXXFLAGS to build with compiler optimizations. Fix API search failed with “Commands out of sync; you can’t run this command now”. Fix invalid SOA record in MySQL which prevented the authoritative server from starting. Plug mysql_thread_init memory leak. Correctly interpret an empty AXFR response to an IXFR query. Fix replying from ANY address for non-standard port. Do not compress the root. Fix dot stripping in setcontent(). 4.1.7 Bug Fixes Insufficient validation in the HTTP remote backend (CVE-2019-3871, PowerDNS Security Advisory 2019-03)
Recursive revbump from textproc/icu
powerdns: updated to 4.1.6 4.1.6: Bug Fixes Prevent more than one CNAME/SOA record in the same RRset
revbump for boost 1.69.0
revbump after updating textproc/icu
powerdns: reset PKGREVISION (had been updated after the boost update)
revbump after boost-libs update
powerdns: updated to 4.1.3 4.1.3: Improvements : pdnsutil: use new domain in b2bmigrate : Update copyright years to 2018 : Lower ‘packet too short’ loglevel Bug Fixes : Restrict creation of OPT and TSIG RRsets : Fix handling of user-defined axfr filters return values : Prevent the GeoIP backend from copying NetMaskTrees around, fixes slow-downs in certain configurations : Ensure alias answers over TCP have correct name
Recursive revbump from textproc/icu-62.1
net/powerdns*: Update to 4.1.2. Improvements - API: increase serial after dnssec related updates - Dnsreplay: bail out on a too small outgoing buffer - lower ‘packet too short’ loglevel - Make check-zone error on rows that have content but shouldn’t - avoid an isane amount of new backend connections during an axfr - Report unparseable data in stoul invalid_argument exception - recheck serial when axfr is done - add tcp support for alias Bug Fixes - allocate new statements after reconnecting to postgresql - bindbackend: only compare ips in ismaster() (Kees Monshouwer) - Rather than crash, sheepishly report no file/linenum - Document undocumented config vars - prevent cname + other data with dnsupdate
revbump for boost-libs update
revbump after icu update
Update net/powerdns* to 4.1.0. PowerDNS Authoritative Server 4.1.0 =========================================================== - Improved performance: 400% speedup in some scenarios - Crypto API: DNSSEC fully configurable via RESTful API - Improved documentation - Database related improvements - Enhanced tooling - Support for TCP Fast Open - Support for non-local bind - Support for Botan 2.x (and removal of support for Botan 1.10) - Our packages now ship with PKCS #11 support. - Recursor passthrough removal Full changelog: https://doc.powerdns.com/authoritative/changelog/4.1.html PowerDNS Authoritative Server 4.0.5 =========================================================== Fixes - Fix for missing check on API operations (CVE-2017-15091) - Bindbackend: do not corrupt data supplied by other backends in getAllDomains - API: prevent sending nameservers list and zone-level NS in rrsets - gpgsql: make statement names actually unique - Fix remotebackend params - Fix godbc query logging - For create-slave-zone, actually add all slaves, and not only first n times - Fix a regression in axfr-rectify + test - When making a netmask from a comboaddress, we neglected to zero the port - Fix libatomic detection on ppc64 - Catch DNSName exception in the Zoneparser - Publish inactive KSK/CSK as CDNSKEY/CDS - Handle AFSDB record separately due to record structure. - Treat requestor's payload size lower than 512 as equal to 512 - Correctly purge entries from the caches after a transfer - Handle a signing pipe worker dying with work still pending - Ignore SOA-EDIT for PRESIGNED zones. - Check return value for all getTSIGKey calls. Improvements - Fix ldap-strict autoptr feature, including a test - mydnsbackend: Add getAllDomains - Stubresolver: Use only recursor setting if given - LuaWrapper: Allow embedded NULs in strings received from Lua - sdig: Clarify that the ednssubnet option takes "subnet/mask" - Tests: Ensure all required tools are available - PowerDNS sdig does not truncate trailing bits of EDNS Client Subnet mask - LuaJIT 2.1: Lua fallback functionality no longer uses Lua namespace - Add support for Botan 2.x - Ship ldapbackend schema files in tarball - Collection of schema changes - Fix typo in two log messages - Add help text on autodetecting systemd support - Use a unique pointer for bind backend's d_of - Fix some of the issues found by @jpmens
Revbump after boost update
Revbump after textproc/icu update
revbump for requiring ICU 59.x
Revbump for boost update
Update net/powerdns* to 4.0.4. This release features a fix for the ed25519 signer. This signer hashed the message before signing, resulting in unverifiable signatures. Also on the Elliptic Curve front, support was added for ED448 (DNSSEC algorithm 16) by using libdecaf. Bug fixes - Do not hash the message in the ed25519 signer - Make URI integers 16 bits, fixes #5443 - configure.ac: Corrects syntax error in test statement on existance of libcrypto_ecdsa - configure.ac: Fix quoting issue fixes #5401 - configure.ac: Check in the detected OpenSSL/libcrypto for ECDSA - configure.ac: Check if we can link against libatomic if needed - Fix typo in ldapbackend.cc from issue #5091 - Sort NSEC record case insensitive - Make sure NSEC ordernames are always lower case - API: correctly take TTL from first record even if we are at the last comment - Fix AtomicCounter unit tests on 32-bit - Fix negative port detection for IPv6 addresses on 32-bit - Remove support for 'right' timezones, as this code turned out to be broken - Lowercase the TSIG algorithm name in hash computation - Handle exceptions raised by closesocket() - Don't leak on signing errors during outgoing AXFR; signpipe stumbles over interrupted rrsets; fix memory leak in gmysql backend - TinyCDB backend: Don't leak a CDB object in case of bogus data Improvements - ODBC backend: Allow query logging - Add ED25519 (algo 15) and ED448 (algo 16) support with libdecaf signer - YaHTTP: Sync with upstream changes - Send a notification to all slave servers after every dnsupdate - Add option to set a global lua-axfr-script value - dnsreplay: Add --source-ip and --source-port options - calidns: Use the correct socket family (IPv4 / IPv6) - Add an option to allow AXFR of zones with a different (higher/lower) serial - API: Make trailing dot handling consistent with pdnsutil - SuffixMatchNode: Fix insertion issue for an existing node - Do not resolve the NS-records for NOTIFY targets if the "only-notify" whitelist is empty, as a target will never match an empty whitelist. - Improve the AXFR DNSSEC freshness check; Ignore NSEC3PARAM metadata in an unsigned zone - Create additional reuseport sockets before dropping privileges; remove transaction in pgpsql backend
Recursive revbump from boost update
Revbump after icu update
Fix SunOS segfaults. Bump PKGREVISION.
Update net/powerdns to 4.0.3. pkgsrc changes: - Remove options for cryptopp and geoip (the latter to go into a separate package). - Clean up a lot of patches that do not seem to be needed anymore. PowerDNS Authoritative Server 4.0.3 =================================== - Revert "In 'Bind2Backend::lookup()', use the 'zoneId' when we have it" PowerDNS Authoritative Server 4.0.2 Security issues fixed: - 2016-02: Crafted queries can cause abnormal CPU usage - 2016-03: Denial of service via the web server - 2016-04: Insufficient validation of TSIG signatures - 2016-05: Crafted zone record can cause a denial of service Other highlights: - Don't parse spurious RRs in queries when we don't need them (Security Advisory 2016-02) - Don't exit if the webserver can't accept a connection (Security Advisory 2016-03) - Check TSIG signature on IXFR (Security Advisory 2016-04) - Correctly check unknown record content size (Security Advisory 2016-05) - ODBC backend: actually prepare statements - Improve root-zone performance - Plug memory leak in postgresql backend (Christian Hofstaedtler) - calidns: Don't crash if we don't have enough 'unknown' queries remaining - Improve PacketCache cleaning (Kees Monshouwer) - Bind backend: update status message on reload, keep the existing zone on failure - Fix TSIG for single thread distributor (Kees Monshouwer) - Change default for any-to-tcp to yes (Kees Monshouwer) - Don't look up the packet cache for TSIG-enabled queries - Fix build with OpenSSL 1.1.0 final (Christian Hofstaedtler) - pdnsutil: create-slave-zone accept multiple masters (Hannu Ylitalo) PowerDNS Authoritative Server 4.0.1 =================================== Bug fixes - Wait for the connection to the carbon server to be established - Don't try to deallocate empty PG statements - Send the correct response when queried for an NSEC directly (Kees Monshouwer) - Don't include bind files if length <= 2 or > sizeof(filename) - Catch runtime_error when parsing a broken MNAME Improvements - Make DNSPacket return a ComboAddredd for local and remote (Aki Tuomi) - OpenSSL 1.1.0 support (Christian Hofstaedtler) - Fix typos in a logmessage and exception (Christian Hofsteadtler) - pdnsutil: Remove checking of ctime and always diff the changes (Hannu Ylitalo) - dnsreplay: Only add Client Subnet stamp when asked - Use toLogString() for ringAccount (Kees Monshouwer) Additions - Add limits to the size of received {A,I}XFR - Add used filedescriptor statistic (Kees Monshouwer) PowerDNS Authoritative Server 4.0.0 =================================== - Moved to C++ 2011, a cleaner more powerful version of C++ that has allowed us to improve the quality of implementation in many places. - Implemented dedicated infrastructure for dealing with DNS names that is fully "DNS Native" and needs less escaping and unescaping. - Due to this, the PowerDNS Authoritative Server can now serve DNSSEC-enabled root-zones. - All backends derived from the Generic SQL backend use prepared statements. - Both the server and pdns_control do the right thing when chroot'ed. - Caches are now fully canonically ordered, which means entries can be wiped on suffix in all places - A revived and supported ODBC backend (godbc). - A revived and supported LDAP backend (ldap). - Support for CDS/CDNSKEY and RFC 7344 key-rollovers. - Support for the ALIAS record. - The webserver and API are no longer experimental. - The API-path has moved to /api/v1 - DNSUpdate is no longer experimental. - ECDSA (algorithm 13 and 14) supported without in-tree cryptographic libraries (provided by OpenSSL). - Experimental support for ed25519 DNSSEC signatures (when compiled with libsodium support). - Many new pdnsutil commands. - GeoIP backend has gained many features, and can now e.g. run based on explicit netmasks not present in the GeoIP databases - Removed support for LMDB. - Removed the Geo backened (use the improved GeoIP instead). - pdnssec has been renamed to pdnsutil. - Support for the PolarSSL/MbedTLS, Crypto++ and Botan cryptographic libraries have been dropped in favor of the (faster) OpenSSL libcrypto (except for GOST, which is still provided by Botan). - ECDSA P256 SHA256 (algorithm 13) is now the default algorithm when securing zones. - The PowerDNS Authoritative Server now listens by default on all IPv6 addresses. - Several superfluous queries have been dropped from the Generic SQL backends. - The INCEPTION, INCEPTION-WEEK and EPOCH SOA-EDIT metadata values are marked as deprecated and will be removed in 4.1.0
Revbump after boost update
Recursive revbump from textproc/icu 58.1
Revbump post boost update
Switch to security/mbedtls1/buildlink3.mk. Bump PKGREVISION.
Update net/powerdns (and modules) to 3.4.9. PowerDNS Authoritative Server 3.4.9 =================================== This is a minor bugfix and performance release. Two contributions by Kees Monshouwer make 3.4.9 fully compatible with the new single key ECDSA default that is coming in version 4.0.0. Changes since 3.4.8: - use OpenSSL for ECDSA signing where available (Kees Monshouwer) - allow common signing key (Kees Monshouwer) - Add a disable-syslog setting - fix SOA caching with multiple backends (Kees Monshouwer) - whitespace-related zone parsing fixes ticket #3568 - bindbackend: fix, set domain in list() (Kees Monshouwer) PowerDNS Authoritative Server 3.4.8 =================================== This is a small bugfix release. Additionally, the deb/RPM packages on downloads.powerdns.com (those with -static in the name) for 3.4.8 have been built against Botan 1.10.11 instead of Botan 1.10.3 like previous packages. Please see the Botan Security page for more information on the fixes in Botan 1.10.11. As a PowerDNS user, these issues only affect you if you ran our -static packages and allowed your users to upload private keys to your configuration. Changes since 3.4.7: - Use AC_SEARCH_LIBS (Ruben Kerkhof) - Check for inet_aton in libresolv (Ruben Kerkhof) - Remove hardcoded -lresolv, -lnsl and -lsocket (Ruben Kerkhof) - pdnssec: don't check disabled records (Pieter Lexis) - pdnssec: check all records (including disabled ones) only in verbose mode (Kees Monshouwer) - traling dot in DNAME content (Kees Monshouwer) - Fix luabackend compilation on FreeBSD i386 (RvdE) - silence g++ 6.0 warnings and error (Kees Monshouwer) - add gcc 5.3 and 6.0 support to boost.m4 (Kees Monshouwer) PowerDNS Authoritative Server 3.4.7 =================================== This is a security release fixing Security Advisory 2015-03 Bug fixes: - Ignore invalid/empty TKEY and TSIG records (Christian Hofstaedtler) - Don't reply to truncated queries (Christian Hofstaedtler) - don't log out-of-zone ents during AXFR in (Kees Monshouwer) - Prevent XSS by escaping user input. Thanks to Pierre Jaury and Damien Cauquil at Sysdream for pointing this out. - Handle NULL and boolean properly in gPGSql (Aki Tuomi) - Improve negative caching (Kees Monshouwer) - Do not divide timeout twice (Aki Tuomi) - Correctly sort records with a priority. Improvements: - Direct query answers and correct zone-rectification in the GeoIP backend (Aki Tuomi) - Use token names to identify PKCS#11 keys (Aki Tuomi) - Fix typo in an error message (Arjen Zonneveld) - limit NSEC3 iterations in bindbackend (Kees Monshouwer) - Initialize minbody (Aki Tuomi) New features: - OPENPGPKEY record-type (James Cloos and Kees Monshouwer) - add global soa-edit settings (Kees Monshouwer)
Recursive revbump from textproc/icu 57.1
Update powerdns to 3.4.6. This is a security release fixing CVE-2015-5230. Bug fixes: - Avoid superfluous backend recycling - Removal of dnsdist from the authoritative server distribution - Add EDNS unknown version handling and tests EDNS unknown version handling Improvements: - Update YaHTTP to v0.1.7 - Make trailing/leading spaces stand out in pdnssec check_zone - GCC 5.2 support and sync boost.m4 macro with upstream - Log answer packets only if log-dns-details is enabled
Recursive revbump from textproc/icu
Change powerdns dependency from polarssl to mbedtls. Streamline bl3 setup while at it. Bump PKGREVISION (and of the module packages).
Update net/powerdns to 3.4.5. PowerDNS Authoritative Server 3.4.5 Bug fixes: - Be careful reading empty lines in our config parser and prevent integer overflow. - prevent crash after --list-modules (Ruben Kerkhof) - Limit the maximum length of a qname Improvements: - Support /etc/default for our debian/ubuntu packages (Aki Tuomi) - Detect GCC 5.1 for boost (Ruben Kerkhof) - Various PKCS#11 fixes and improvements (Aki Tuomi) - Fix Coverity issues (Aki Tuomi) - Fix building on OpenBSD (Florian Obser and Ruben Kerkhof) - Look for mbedtls before polarssl (Ruben Kerkhof) - Let pkg-config determine botan dependency libs (Ruben Kerkhof) - Kill some further mallocs and add note to remind us not to add them back - Move remotebackend-unix test socket to testsdir (Aki Tuomi) - Defer launch of coprocess until first question (Aki Tuomi) - pdnssec: check for glue and delegations in parent zones (Kees Monshouwer) PowerDNS Authoritative Server 3.4.4 Bug fixes: - Fix rectify-(all)-zones for mixed case domain names - Fix CVE-2015-1868 - Blocking IO in busy-wait for remote backend (Wieger Opmeer) - Fix double dot for root MX/SRV in bind slave zone files (Kees Monshouwer) - Properly lock lmdb database, fixes ticket #1954 (Aki Tuomi) - Fix segfault in zone2lmdb (Ruben Kerkhof) New Features: - pdnssec: warn for insecure wildcards in opt-out zones - TKEY record type (Aki Tuomi) - Many PKCS#11 improvements (Aki Tuomi) - Introduce xfrBlobNoSpaces and use them for TSIG (Aki Tuomi) Improvements: - Allow "pdnssec set-nsec3 ZONE" for insecure zones; this saves on one rectify when securing a NSEC3 zone - Improvements to the config-file parsing (Aki Tuomi) - Postgresql check should not touch LDFLAGS (Ruben Kerkhof) - Log error when remote cannot do AXFR (Aki Tuomi) - Speed improvements when AXFR is disabled (Christian Hofstaedtler) - NSEC3 and related RRSIGS are not part of the dnstree (Kees Monshouwer) - Change ifdef to check for __GLIBC__ instead of __linux__ to prevent errors with other libc's (James Taylor) - Try to raise open files before dropping privileges (Aki Tuomi) - Add newline to carbon error message on auth (Aki Tuomi) - Make sure we send servfail on error (Aki Tuomi) - Ship lmdb-example.pl in tarball (Ruben Kerkhof) - Allocate TCP buffer dynamically, decreasing stack usage - Throw if getSOA gets non-SOA record
Revbump after updating devel/boost-libs
Revbump after updating textproc/icu
Update PowerDNS to 3.4.1. pkgsrc changes: - SQLite 2.x support no longer exists - SQLite 3.x support cannot be compiled outside the main package because of how symbols are distributed, so making it a compile time option for net/powerdns now. Too many changes since 2.9.22.5 (over 2 years ago), see the full changelog: http://doc.powerdns.com/md/changelog/ Upgrade notes: - PowerDNS 3.4 comes with a mandatory database schema upgrade coming from any previous 3.x release. - PowerDNS 3.1 introduces native SQLite3 support for storing key material for DNSSEC in the bindbackend. With this change, support for bind+gsql-setups ('hybrid mode') has been dropped. - PowerDNS 3.0 introduces full DNSSEC support which requires changes to database schemas. By default, old non-DNSSEC schema is assumed. Please see the docs on upgrading for particular steps that need to be taken: http://doc.powerdns.com/md/authoritative/upgrading/
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
Limit inclusion of boost headers to only those necessary to avoid conflicting type errors, notably uint_t. Add -lsocket -lnsl on Solaris. Fixes package on Solaris.
Pullup ticket #3660 - requested by ghen net/powerdns: build fix net/powerdns-ldap: build fix net/powerdns-mysql: build fix net/powerdns-pgsql: build fix net/powerdns-sqlite: build fix Revisions pulled up: - net/powerdns-ldap/Makefile 1.8-1.9 - net/powerdns-ldap/PLIST 1.2-1.3 - net/powerdns-mysql/Makefile 1.8-1.9 - net/powerdns-mysql/PLIST 1.3-1.4 - net/powerdns-pgsql/Makefile 1.10-1.11 - net/powerdns-pgsql/PLIST 1.2-1.3 - net/powerdns-sqlite/Makefile 1.5-1.6 - net/powerdns-sqlite/PLIST 1.2-1.3 - net/powerdns/Makefile 1.6-1.7 - net/powerdns/PLIST 1.3-1.4 - net/powerdns/distinfo 1.10 - net/powerdns/patches/patch-configure 1.1 --- Module Name: pkgsrc Committed By: ghen Date: Mon Jan 23 15:11:54 UTC 2012 Modified Files: pkgsrc/net/powerdns: Makefile PLIST distinfo pkgsrc/net/powerdns-ldap: Makefile PLIST pkgsrc/net/powerdns-mysql: Makefile PLIST pkgsrc/net/powerdns-pgsql: Makefile PLIST pkgsrc/net/powerdns-sqlite: Makefile PLIST Added Files: pkgsrc/net/powerdns/patches: patch-configure Log Message: Fix unportable == check in configure (I did not have PKG_DEVELOPER=yes when previously updating this pkg), noted by joerg. Also fix some PLIST issues (introduced with the same update). Bump PKGREVISION of affected packages. --- Module Name: pkgsrc Committed By: ghen Date: Wed Jan 25 10:21:12 UTC 2012 Modified Files: pkgsrc/net/powerdns: Makefile PLIST pkgsrc/net/powerdns-ldap: Makefile PLIST pkgsrc/net/powerdns-mysql: Makefile PLIST pkgsrc/net/powerdns-pgsql: Makefile PLIST pkgsrc/net/powerdns-sqlite: Makefile PLIST Log Message: Previous PLIST change was wrong due to a libdir bug now fixed by sbd. Revert PLIST and bump PKGREVISION again for powerdns + modules.
Previous PLIST change was wrong due to a libdir bug now fixed by sbd. Revert PLIST and bump PKGREVISION again for powerdns + modules.
Fix unportable == check in configure (I did not have PKG_DEVELOPER=yes when previously updating this pkg), noted by joerg. Also fix some PLIST issues (introduced with the same update). Bump PKGREVISION of affected packages.
pullup ticket #2476 - requested by ghen powerdns: security fix revisions pulled up: pkgsrc/net/powerdns/Makefile 1.4 pkgsrc/net/powerdns/distinfo 1.3 pkgsrc/net/powerdns/patches/patch-ac 1.1 Module Name: pkgsrc Committed By: ghen Date: Mon Aug 11 13:59:48 UTC 2008 Modified Files: pkgsrc/net/powerdns: Makefile distinfo Added Files: pkgsrc/net/powerdns/patches: patch-ac Log Message: Fix for CVE-2008-3337 taken from PowerDNS 2.9.21.1: return SERVFAIL to mailformed queries instead of just dropping them (as this facilitates DNS spoofing attacks). Bump PKGREVISION.
Upgrade PowerDNS to 2.9.21.1. This release contains the security patch for CVE-2008-3337 that we already had in patch-ac.
Fix for CVE-2008-3337 taken from PowerDNS 2.9.21.1: return SERVFAIL to mailformed queries instead of just dropping them (as this facilitates DNS spoofing attacks). Bump PKGREVISION.
The package supports installation to DESTDIR.
Bump PKGREVISION due to boost update to 1.34.1.
Import net/powerdns, based on wip/pdns2 from pkgsrc-wip. The PowerDNS nameserver is a modern, advanced and high performance authoritative-only nameserver. It is written from scratch and conforms to all the relevant DNS standards documents. PowerDNS is open source. The PowerDNS nameserver utilizes a flexible backend architecture that can access DNS information from any data source. This includes file formats, Bind zone files, relational databases or LDAP directories. See the net/powerdns-* packages for additional backend modules.
Initial revision