dns/dnscrypt-proxy2: Improve information/texts
Submitted by: tj@mrsk.me (email) Approved by: egypcio@googlemail.com (maintainer, irc)
This commit is contained in:
Danilo G. Baio
parent
4805700f23
commit
7195d6be32
Notes:
svn2git
2021-03-31 03:12:20 +00:00
svn path=/head/; revision=465857
4 changed files with 17 additions and 18 deletions
|
|
@ -2,6 +2,7 @@
|
|||
|
||||
PORTNAME= dnscrypt-proxy
|
||||
PORTVERSION= 2.0.7
|
||||
PORTREVISION= 1
|
||||
CATEGORIES= dns security
|
||||
PKGNAMESUFFIX= 2
|
||||
|
||||
|
|
|
|||
|
|
@ -6,12 +6,16 @@
|
|||
# REQUIRE: cleanvar SERVERS
|
||||
# BEFORE: dnsmasq local_unbound unbound named
|
||||
#
|
||||
# These are some lines to configure dnscrypt-proxy on /etc/rc.conf:
|
||||
# Options to configure dnscrypt-proxy via /etc/rc.conf:
|
||||
#
|
||||
# dnscrypt_proxy_enable (bool): Enable service on boot. Default: NO
|
||||
# dnscrypt_proxy_conf (str): Config file to use. Default: %%PREFIX%%/etc/dnscrypt-proxy.toml
|
||||
# dnscrypt_proxy_uid (str): Set to "_dnscrypt-proxy" by default.
|
||||
# dnscrypt_proxy_enable (bool) Enable service on boot
|
||||
# Default: NO
|
||||
#
|
||||
# dnscrypt_proxy_conf (str) Config file to use
|
||||
# Default: %%PREFIX%%/etc/dnscrypt-proxy.toml
|
||||
#
|
||||
# dnscrypt_proxy_uid (str) User to run dnscrypt_proxy as
|
||||
# Default: _dnscrypt-proxy
|
||||
|
||||
. /etc/rc.subr
|
||||
|
||||
|
|
|
|||
|
|
@ -1,4 +1,4 @@
|
|||
A flexible DNS proxy, with support for modern encrypted DNS protocols such as
|
||||
A flexible DNS proxy with support for modern encrypted DNS protocols such as
|
||||
DNSCrypt v2 and DNS-over-HTTP/2.
|
||||
|
||||
WWW: https://github.com/jedisct1/dnscrypt-proxy
|
||||
|
|
|
|||
|
|
@ -1,16 +1,14 @@
|
|||
=====================================================================
|
||||
Version 2 of dnscrypt-proxy is written in Go and in FreeBSD it's
|
||||
not capable to drop root privileges after binding a low port (53),
|
||||
Go issue [1][2].
|
||||
Version 2 of dnscrypt-proxy is written in Go and therefore isn't capable
|
||||
of dropping privileges after binding to a low port on FreeBSD.
|
||||
|
||||
For default dnscrypt-proxy2 is listening in port 5353 using username
|
||||
_dnscrypt-proxy.
|
||||
By default, the dnscrypt-proxy2 port will listen on (tcp/udp) port 5353
|
||||
as the _dnscrypt-proxy user.
|
||||
|
||||
You can change your rc.conf/config to use port 53 and root but it's
|
||||
not recommended.
|
||||
It's possible to change back to port 53, but not recommended.
|
||||
|
||||
It's needed some tweaks to use dnscrypt-proxy2 on port 5353 on your
|
||||
machine, some examples below to redirect localhost port 53 to 5353:
|
||||
Below are a few examples on how to redirect local connections from port
|
||||
5353 to 53.
|
||||
|
||||
[ipfw]
|
||||
|
||||
|
|
@ -34,13 +32,9 @@ machine, some examples below to redirect localhost port 53 to 5353:
|
|||
server:
|
||||
interface: 127.0.0.1
|
||||
do-not-query-localhost: no
|
||||
hide-identity: yes
|
||||
hide-version: yes
|
||||
|
||||
forward-zone:
|
||||
name: "."
|
||||
forward-addr: 127.0.0.1@5353
|
||||
|
||||
[1] - https://github.com/jedisct1/dnscrypt-proxy/issues/199
|
||||
[2] - https://github.com/golang/go/issues/13838
|
||||
=====================================================================
|
||||
|
|
|
|||
Loading…
Reference in a new issue