Package: wnpp Severity: wishlist X-Debbugs-Cc: debian-r...@lists.debian.org
* Package name : hickory-dns Version : 0.25.1 Upstream Contact: https://github.com/hickory-dns * URL : https://github.com/hickory-dns/hickory-dns * License : Apache-2, MIT Programming Lang: Rust Description : Rust based DNS client, server, and resolver This a named implementation for DNS zone hosting, stub resolvers, and recursive resolvers. It is capable of performing signing all records in the zone for server DNSSEC RRSIG records associated with all records in a zone. There is also a hickory-dns binary that can be generated from the library with cargo install hickory-dns. Dynamic updates are supported via SIG0 (an mTLS authentication method is under development). # Features - Dynamic Update with sqlite journaling backend (SIG0) - DNSSEC online signing (with NSEC and NSEC3) - Forwarding stub resolver - ANAME resolution, for zone mapping aliases to A and AAAA records - Additionals section generation for aliasing record types # Optional protocol support The following DNS protocols are optionally supported: - Enable dns-over-rustls for DNS over TLS (DoT) - Enable dns-over-https-rustls for DNS over HTTP/2 (DoH) - Enable dns-over-quic for DNS over QUIC (DoQ) - Enable dns-over-h3 for DNS over HTTP/3 (DoH3) # DNSSEC status The current root key is bundled into the system, and used by default. This gives validation of DNSKEY and DS records back to the root. NSEC and NSEC3 are implemented. Zones will be automatically resigned on any record updates via dynamic DNS. To enable DNSSEC, enable the dnssec-ring feature. -- We already have most of the crates here, it seems we just need this binary.
