localzone is a low-calorie library for managing DNS zones.
Features:
- A simple API focused on managing resource records in local zone files
- Support for almost all resource record types
- Auto-save and auto-serial
- Built for automation
WWW: https://github.com/ags-slc/localzone
- official builds now support TLS 1.3;
- timeout for the initial connectivity check can be set from the cli;
- an 'Accept:' header is now always sent with GET queries;
- BOM is now ignored in configuration files;
- HTTP and HTTPS proxies are now supported for DoH servers.
https://github.com/jedisct1/dnscrypt-proxy/blob/2.0.18/ChangeLog
Approved by: araujo (mentor)
Differential Revision: https://reviews.freebsd.org/D18005
This releases fixes the following security advisories:
- PowerDNS Security Advisory 2018-03 (CVE-2018-10851)
- PowerDNS Security Advisory 2018-05 (CVE-2018-14626)
It also contains some improvemens and bug fixes.
Full changelog:
https://doc.powerdns.com/authoritative/changelog/4.1.html#change-4.1.5
PR: 233139
Submitted by: maintainer
Changelog: https://doc.powerdns.com/recursor/changelog/4.0.html
Expiration date is 2018-12-31
Please migrate to Version 4.1.x dns/powerdns-recursor
PR: 233141
Submitted by: Ralf van der Enden <tremere@cainites.net> (maintainer)
MFH: 2018Q4
Security: e9aa0e4c-ea8b-11e8-a5b7-00e04c1ea73d
Sponsored by: Netzkommune GmbH
It may get picked up from the base OpenSSL and break startup.
While there, make sure the correct engines are used.
Reported by: Kevin P. Neal (on ports@)
* while here, adopt the port;
* files/patch-Makefile;
use CC=${CC} for clang and GCC compatibility;
use PREFIX instead of hardcoding "/usr/local";
better use WFLAGS+= (with a plus).
* also updated 'pkg-descr' with a longer description about the port.
PR: 230990
Submitted by: egypcio
Approved by: rene (mentor)
When building without poudriere, it would always pick LuaJIT over Lua if both are installed,
basically ignoring the configuration knob.
- Bump PORTREVISION
PR: 233142 (based on)
Submitted by: Ralf van der Enden <tremere@cainites.net>
MFH: 2018Q4
After a discussion on the mailing list on moving manpages to
${PREFIX}/share/man for consistency with base where it is
installed in usr/share/man, it appeared the same should happen
to GNU info files which were installed under share in base and
not in ports.
Now texinfo is not in base on any of the supported version of FreeBSD
it is possible to proceed to this move and it is easier to do than
the manpage change.
Other benefit than consistency are less patching: all build tools but
cmake are expecting info files to be under share/info and cmake (patched here)
was having an exception for BSD so the patch makes FreeBSD case less
specific for them
Bump revision of all impacted ports
PR: 232907
exp-run by: antoine
Differential Revision: https://reviews.freebsd.org/D17816
Simplify some ports where DragonFlyBSD no longer needs to be special-cased.
Submitted by: rene
Reviewed by: bapt, jbeich
Differential Revision: https://reviews.freebsd.org/D17724
It was never (widely|really) used, and support for it has been dropped
in OpenSSL starting at 1.1, and BIND9 starting at 9.13.
PR: 231980
Reported by: mfechner
* Fix BUG-21: add try/except around conversions from signed python
integers
Port build now uses cython.
Add missing devel/mtbl dependency.
Pet portlint (USES/USE ordering).
Sponsored by: Farsight Security, Inc.
dnsdist-lua.cc:76:10: error: no viable conversion from returned value of type 'boost::logic::tribool' to function return type 'bool'
return g_noLuaSideEffect==true;
^~~~~~~~~~~~~~~~~~~~~~~
PR: 232525
Security: the installed example configuration file shows a way of
disabling WPAD hijacking, but leaves it commented out. Extend pkg-message.
Changelog: <http://thekelleys.org.uk/dnsmasq/CHANGELOG>
Since installing v2.80 isn't a fix against the vulnerability, and fixing
it needs administrator intervention on upgrades, I am not marking this in
vuxml for now, since we'd need to mark v2.80 vulnerable, too.
MFH: 2018Q4
Security: CERT VU#598349
