openwrt-packages-dist

Commit Graph

Author	SHA1	Message	Date
Philip Prindeville	9e4485b156	named: don't leak mktemp files on reload Unless we're using "mktemp -u ..." (not recommended), it will create the temp file as part of its safety checking. Thus you should only create the name (file) if you're going to use it, and always remove it if you have created it. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>	3 years ago
Philip Prindeville	daf6b8b212	bind: created /var/run/named directory Side-effect of dropping capabilities(7) with last commit is now we need the `/var/run/named/` directory created for us at startup. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>	3 years ago
Philip Prindeville	a39a8372b3	bind: deprecate managed-keys This has been replaced with the "trust-anchors" keyword, per section 8.21.1 New Features of the Bind 9 Administrator Reference Manual: • In order to clarify the configuration of DNSSEC keys, the trusted-keys and managed-keys statements have been deprecated, and the new trust-anchors statement should now be used for both types of key. When used with the keyword initial-key, trust-anchors has the same behavior as managed-keys, i.e., it configures a trust anchor that is to be maintained via RFC 5011. When used with the new keyword static-key, trust-anchors has the same behavior as trusted-keys, i.e., it configures a permanent trust anchor that will not automatically be updated. (This usage is not recommended for the root key.) [GL #6] Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>	3 years ago
Philip Prindeville	52c4c84700	bind: start named early enough to be present when isc-dhcp starts Start named before dhcpd so that dhcpd can prime the local zones at startup. Restore the empty domain zone for rfc1918 addresses that previously existed. Create an additional subsidiary named.conf.local file (initially empty) in /tmp/bind/ that can be seeded with dynamic zones and primed with "rndc reload", and add it to the watched list of config files for procd. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>	4 years ago
Philip Prindeville	31a256f0ab	bind: add support for the 'rndc' utility Enable the control port on named that rncd uses to talk to it. Use rndc to allow for lightweight reloads of some (per-zone) or all of the database without an interruption of service. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>	4 years ago
Noah Meyerhans	6f320da526	bind: Update bind.keys A multi-year DNSSEC root key update is in progress, as described at https://www.isc.org/downloads/bind/bind-keys/. This change refreshes the bind.keys file, ensuring that the new key, in place as of 2018-10-11, will be recognized and trusted. Signed-off-by: Noah Meyerhans <frodo@morgul.net>	6 years ago
DonkZZ	707851401c	net/bind: Update db.root The contents of the file "db.root" is very old (12 years). Here's a new version downloaded from ftp://ftp.internic.net/domain/ Signed-off-by: DonkZZ <donk@evhr.net>	9 years ago
DonkZZ	6cff74db52	net/bind: Little cleaning in named.init The variable "config_file" appears twice. Signed-off-by: DonkZZ donk@evhr.net	9 years ago
Noah Meyerhans	1fe4160fc2	net/bind: add the bind user/group Signed-off-by: Noah Meyerhans <frodo@morgul.net>	10 years ago
Noah Meyerhans	d3d3f1e57b	bind: Use procd in /etc/init.d/named Signed-off-by: Noah Meyerhans <frodo@morgul.net>	10 years ago
Noah Meyerhans	0719636b05	net/bind: Re-import package net/bind from oldpackages. Signed-off-by: Noah Meyerhans <noahm@debian.org>	10 years ago

11 Commits (lilik-openwrt-22.03)