[*] for small issues like this. They (and other wealthy companies)
should be paying money only for original security research and not this
nonsense.
* $100 is a helluva money in some economies...
Ondrej
--
Ondřej Surý
ond...@isc.org
> On 5 Jun 2020, at 11:24, Jukka Pakkanen wrote:
>
>
Hi Brett,
BIND 9 already uses primary/secondary as keywords and we are actively
working on updating BIND 9 to match the canon defined in RFC 8499.
You can find the latest documentation from the BIND 9 development branch
here: https://bind9.readthedocs.io/en/latest/
Cheers,
Ondrej
--
Ondřej Surý
configuration option you are looking for:
https://bind9.readthedocs.io/en/latest/reference.html?highlight=Cookie#server-statement-grammar
Ondrej
--
Ondřej Surý — ISC
> On 17 Jun 2020, at 17:22, Ian Springett wrote:
>
>
> Hi
> I have an issue with BIND 9.14.11 and recursive queries to
Virtually everybody except upstream has modified LMDB to follow a normal
directory layout and BIND expect that.
You should just move the header files and library to /usr/local/include and
/usr/local/lib respectively.
Ondrej
--
Ondřej Surý — ISC
> On 18 Jun 2020, at 04:28, PGNet Dev wr
Did you came to get help or to argue?
LMDB support in BIND 9 comes with pkg-config support too, you can use and
adjust the .pc file from any Linux distribution package.
It’s really not our fault the LMDB upstream decided to make it hard to use the
library.
Ondrej
--
Ondřej Surý — ISC
> On
Jukka and others,
I would prefer if we didn’t scold people for typos on the mailing list. The typo
in the message had no impact on the question itself, and here, we are trying
to build community that’s welcoming to newcomers to the wonderful world
of DNS.
Ondrej
--
Ondřej Surý
ond...@isc.org
keep the noise to minimum to the list? Your email was
not helpful,
so I would appreciate if you could cut the trolling on the list to the minimum.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 8 Jul 2020, at 13:29, G.W. Haywood via bind-users
> wrote:
>
> Hi there,
>
>
Missing MX, there’s actually syntax accepted by major SMTP servers to disable
SMTP for domain:
example.com. MX 0 .
Ondrej
--
Ondřej Surý — ISC
> On 9 Jul 2020, at 16:06, Matthew Richardson wrote:
>
> On a related issues there were (perhaps long ago) issues if the A record
> for
those ports, and then use
`dig` (or other DNS debugging tool) to send actual DNS
queries.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 1. 9. 2020, at 16:11, Axel Rau wrote:
>
> Hi!
>
> this is a new server, which answers external queries, sends notifies and
> pushes ax
\
internetsystemsconsortium/bind9:9.16
Thanks for any feedback you might have,
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
ISC funds the development of this software with
l/README for details.
#include
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
ISC funds the development of this software with paid support subscriptions.
And for debian, I maintain https://packages.sury.org/bind/ for 9.16, replace
with bind-esv for 9.11 ESV or bind-dev for 9.17 for development version.
Ondrej
--
Ondřej Surý — ISC (He/Him)
> On 10. 11. 2020, at 19:45, John Thurston wrote:
>
>
>> On 11/8/2020 10:18 PM, Rob McEw
willing to help you.
Ondrej
--
Ondřej Surý — ISC (He/Him)
> On 13. 11. 2020, at 14:08, rams wrote:
>
>
> Hi,
> Can anyone help me how to generate ZSK key with one year validity?
> When I am trying , it is default 30 days validity but i want to make ZSK key
> validity 1 ye
trigger somebody with similar
experience.
Ondrej
--
Ondřej Surý — ISC (He/Him)
> On 17. 11. 2020, at 6:42, Boylan, Ross wrote:
>
> One other detail may be important: I just added a bridge interface and
> virtual machines. I presume the VPN tunnel was using the hardware interface
>
steps (as you have found on the Internet).
Ondrej
--
Ondřej Surý — ISC (He/Him)
> On 17. 12. 2020, at 19:56, Bruce Johnson wrote:
>
> Someone updated out name server and messed up the serial number on the
> primary; as a result our secondaries are not updating properly.
I would add that the Debian packages are at:
* 9.11 https://bind.debian.net/bind-esv/
* 9.16 https://bind.debian.net/bind/
* 9.17 https://bind.debian.net/bind-dev/
Ondřej
--
Ondřej Surý — ISC (He/Him)
> On 18. 12. 2020, at 19:24, Victoria Risk wrote:
>
>
>
>> On Dec 18,
operating system
you’ll as users make.
Ondrej
--
Ondřej Surý — ISC (He/Him)
> On 19. 12. 2020, at 16:23, Mauricio Tavares wrote:
>
> On Sat, Dec 19, 2020 at 4:35 AM Tom J. Marcoen
> wrote:
>>
>> Hey all,
>>
>> Just wondering here, why switching from CentOS
Hi,
we can’t really help you if you don’t use the real domain names and real IP
addresses.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 7. 1. 2021, at 16:56, - wrote:
>
> Hi all,
>
> We are running BIND 9.16.6 DNS servers that are receiving queries from
> clients b
...
Ondrej
--
Ondřej Surý — ISC (He/Him)
> On 18. 1. 2021, at 9:49, Marek Kozlowski wrote:
>
> :-)
>
> I believe that such a solution (read to install) should exist. Unfortunately
> I don't know the magic keywords to find it:
>
> I have a group of hosts with different I
Greg,
there’s nothing wrong with the zone contents. $ORIGIN means “now append this to
every name not ending with dot”.
Ondřej
--
Ondřej Surý — ISC (He/Him)
> On 27. 1. 2021, at 14:06, Greg Donohoe wrote:
>
>
> Hello. I am hoping that someone can help me to figure out the
You might want to change `masterfile-style` configuration option:
https://bind9.readthedocs.io/en/latest/reference.html?highlight=masterfile-style#tuning
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 27. 1. 2021, at 14:23, Ondřej Surý wrote:
>
> Greg,
>
> there’s nothing
> On 11. 2. 2021, at 7:01, Stuart@registry.godaddy wrote:
>
> It's one of those old compatibility things.
Also called *downgrade attack vector*.
Stuart, there’s absolutely no reason to keep any SHA1 in the DNS at the time I
am writing this message.
Cheers,
Ondrej
--
Ondřej Sur
Thanks! That was the response I was looking for. Much appreciated!
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 11. 2. 2021, at 9:03, stuart@registry.godaddy wrote:
>
> Good to know.
>
> Will attach a task to the next our next KSK roll process. Should halve the
> number o
Cargo Cult very offensive to all those
normal people maintaining the rest of the internet infrastructure that isn’t
the current -umvirate.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 11. 2. 2021, at 14:13, Mark Andrews wrote:
>
> Machines still fall over. They take the same
PTR record,
why do you keep trying to create a forward record? There’s some information
missing somewhere.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
signature.asc
Description: Message signed with OpenPGP
___
Please visit https://lists.isc.org/mail
Hi Erich,
please fill an proper issue at our GitLab instance -
https://gitlab.isc.org/isc-projects/bind9/issues and we’ll take it from here.
We will need more information and mailing list is very clumsy way of tracking
that.
Thanks,
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 19
ant to make god(s) laugh then make plans…
This is going to happen, but the development team needs to polish it bit more
before
backporting such large feature to the stable release.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
signature.asc
Description
You should immediately stop using other people's IP ranges. This won’t ever do
any good. There’s plenty of IP addresses in RFC1918 ranges or even better use
ULA IPv6 range.
When you fix the IP address abuse, there’s a KB article on the topic:
https://kb.isc.org/docs/aa-00800
Ondřej
--
O
Hi Klaus,
can you please fill a proper issue in the gitlab.isc.org? We are going to need
more details and anonymizing the logs isn’t a good way to go forward. In the
GitLab you can make the issue confidential and we will sanitize any user data
before making it public.
Thanks,
Ondrej
--
Ondřej
Unfortunately, we don’t, the PPA doesn’t keep old binaries when replaced with
newer once. I would not recommend running anything older than 9.16.11 as
the TCP code earlier than that is prone to data races.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 11. 3. 2021, at 22:05, Klaus Daril
Here’s the thought - could you be hit by issue
[#2505](https://gitlab.isc.org/isc-projects/bind9/-/issues/2505)?
Check you logs for errors about journal when loading the zone.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 11. 3. 2021, at 23:46, Ondřej Surý wrote:
>
> Unfortun
Klaus,
I pulled couple of the most important patches into the Ubuntu packages. Could
you please try whether the updated package exhibits the same behavior?
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply
Paul,
why don’t you just install BIND 9 from Homebrew?
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 26. 3. 2021, at 1:50, Paul Cizmas wrote:
>
> Hello:
v ✔, openssl@1.1 ✔, python@3.9 ✔
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 26. 3. 2021, at 15:02, Paul Cizmas wrote:
>
> Ondrej:
>
> I did not think of doing it. Let me try. Thank you for your suggestion!
>
> Paul
>
>> On Mar 26, 2021, at 2:04 AM
Please lets not react to one aggression with yet another aggression. I think
all has been said on this topic, so if everyone could refrain from piling more
emails on this topic I would be very much delighted.
Thanks,
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours
Hi Carl,
at this point, I am going to ask you to open an issue in our GitLab instance:
https://gitlab.isc.org/isc-projects/bind9/issues
Thanks,
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 30. 3. 2021, at 22:24, Carl Byington via bind-users
> wrote:
>
> Signed PGP part
&g
John,
please report the issue to the ISC GitLab.
Thanks,
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 7. 4. 2021, at 19:32, John Thurston wrote:
>
> I now see
world we are living in...
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 9. 4. 2021, at 20:28, Kevin K wrote:
>
> Hi,
>
> I've been parsing my query logs to watch for unusual/unexpected lookups, and
> I notice quite a few A queries with underscores,
target of the attack is a resolver, but again in general
case fail2ban that parses named log files might be a good option to add a
temporary ban on the ip. Just bear in mind you are not blocking the attacker,
but the victim.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your
Yes, the legitimate client would be susceptible to spoofing. No answer means
larger time windows to guess the port+msgid combination.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours
/security-advisories/powerdns-advisory-2008-02.html
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 14. 4. 2021, at 9:49, Anand Buddhdev wrote:
>
> On 14/04/2
to keep it, there are several other areas that would
need an improvement - the installer, the system integration and the build
system would have to be extensively improved as well.
Thanks,
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
signature.asc
Description: Message signed with OpenPGP
iddle ground - it’s either making Windows the first class citizen
or no citizen choice here.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal w
FTR the test suite is meant to be used by developers. There’s little value to
use it for validating the production systems.
Generally speaking, having the dependencies and test interfaces (`sudo
bin/tests/system/ifconfig.sh up`) and running `make check` is enough.
Ondřej
--
Ondřej Surý — ISC
See https://gitlab.isc.org/isc-projects/bind9/-/issues/2667
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 6. 5. 2021, at 18:48, DeCaro, James John (Jim) CIV DISA FE (USA)
Dan,
nobody can help you if you strip the logs to bare minimum.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 7. 5. 2021, at 7:37, Dan Egli wrote:
>
> Okay, I go
to drop the native PKCS#11 interface from BIND 9.18, so
there’s less arcane code in named and we can focus on the DNS.
1. https://gitlab.isc.org/isc-projects/bind9/-/wikis/BIND-9-PKCS11
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
___
Please visit
The list of supported platforms for 9.16 is here:
https://gitlab.isc.org/isc-projects/bind9/-/blob/v9_16/PLATFORMS.md
And here’s the simplified table: https://kb.isc.org/docs/supported-platforms
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do
aka browsers
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 7. 5. 2021, at 21:11, Mark Andrews wrote:
>
> Some piece of software trying to speed up resolution by
.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 7. 5. 2021, at 20:55, Dennis Clarke via bind-users
> wrote:
> So I guess there are hard coded gnuisms
I would recommend starting here:
https://bind9.readthedocs.io/en/latest/dnssec-guide.html
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 10. 5. 2021, at 7:19, Dan Egli wr
ds to step up
and start maintaining the BIND 9.18+ Windows version properly. FTR the
“somebody” doesn’t have to do it with their own hands.
Using mingw-w64 to compile BIND 9.18+ instead of using MSVC would be also
accepted as a contribution.
Ondrej
--
Ondřej Surý (He/Hi
project in ISC GitLab.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 10. 5. 2021, at 20:19, Paul Kosinski via bind-users
> wrote:
>
> Actually, it's in
the team.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 29. 4. 2021, at 13:35, Ondřej Surý wrote:
>
> Hi,
>
> we’ve been discussing the /subj for quite some time and we are either
> thinking about deprecating the BIND 9 on Windows completely or just handing
> i
Danny,
I didn’t write the email to put the blame anywhere or point fingers. I am just
describing the situation.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 13
uz52u1wtmumlrx5fwu6nmv22ntcddxcjjw41z8sfd6ur9n7797lrv9.free.ns.buddyns.com.
newideatest.site. 3600IN NS
uz5w6sb91zt99b73bznfkvtd0j1snxby06gg4hr0p8uum27n0hf6cd.free.ns.buddyns.com.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different
ily.name.) (UDP)
;; WHEN: Sun May 16 11:08:49 CEST 2021
;; MSG SIZE rcvd: 129
First fix this ^^^
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 16. 5. 2021, at 10:47, Dan Egli wrote:
>
> Yea, I'm aware of the buddyns.com servers not responding. Noting I can do
> about tha
OpenPGP encrypted email is accepted). We need to
interact with the reporters from the issue and we think this is a reasonable
requirement.
The README.md has to be reviewed and fixed, but I guess you don’t need to fill
the issue for this.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours
o much to ask a little bit of
inconvenience from the users, so we can actually focus on fixing
bugs and improving the software.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
Dominik,
please create issue in our GitLab (https://gitlab.isc.org/) and include
full logs (preferably run named with `-d 99` to get most diagnostic
output).
Thanks,
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 17. 5. 2021, at 9:13, Dominik wrote:
>
> Hello,
>
> yesterday
developers.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 17. 5. 2021, at 12:23, G.W. Haywood via bind-users
> wrote:
>
> Hi there,
>
> On Sun, 16 May 2021, Ond?ej Sur? wrote:
>> On Sun, 16 May 2021, Chuck Aurora wrote:
>> > On Sun, 16 May 2021, Ond?ej Sur? wro
.
On the contrary:
* A good descriptive bug report in the GitLab issue helps
* Merge requests that follows the coding standard, has a good commit message
and good description and is based on the current `main` branch helps…
So, is it really that much to ask?
Ondrej
--
Ondřej Surý (He/Him)
ond..
Well, yes, that’s why the default was reverted. There’s a bug in the feature,
and there’s already MR fixing it. Sorry for the inconvenience.
If anybody is willing to test the fix, I would be happy to point them towards
the MR (and patch).
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours
$ORIGIN ancienttom.us.
?
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 23. 5. 2021, at 16:24, Thomas Strike wrote:
>
> ORIGIN anci
Nope, that’s how you enter email to SOA with dot in user part as the first dot
gets converted to @.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 23. 5. 2021, at 17:15, S
-pre.tar.xz
We would like to hear both success (it’s ok here in the mailing list) and
failure stories
(please create GitLab issues).
Thanks,
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to
Hi Erich,
it was error on my side, it should be ok now.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 25. 5. 2021, at 16:44, Erich Eckner wrote:
>
> Signed PGP part
> On Tue, 25 May 2021, Ondřej Surý wrote:
>
> > Hi,
>
> Hi Ondrej,
>
> >
>
Hi,
you need to post full config.log, not just snippet of the console. But I would
suggest to look into the config.log first.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours
support code from main branch. And thus, next stable
release 9.18 will not come with Windows as supported platform.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 2
jemalloc
for better thread performance and less memory fragmentation and just adding the
library on Windows would be major PITA.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours
information.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 4. 6. 2021, at 19:47, Peter via bind-users
> wrote:
>
>
> On 04/06/2021 6:05 pm, John
just simple as that.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 4. 6. 2021, at 20:37, Peter Coghlan wrote:
>
> What I find ironic is that here:
>
> https://gitlab.isc.org/isc-projects/bind9/-/blob/main/README.md
>
> the very first line says:
>
> "BIND (B
What I’ve heard is that the geoip/maxmindb is the deal breaker,
but on general level, I concur that MS-DNS is a good choice for
Windows Server deployments.
I am a big fan of picking the right tool for the job.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 4. 6. 2021, at 23:31, Eric Germ
Folks, I would appreciate if we can say on the topic. Specifically, I consider
this rhetorical discussion on the meaning of the word “portable” neither useful
to the subscribers of this list nor productive.
Thanks,
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be
Most likely SELinux policy is preventing access to those files. Check the other
logs.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 13. 6. 2021, at 7
gitlab.isc.org with a reproducer, full backtrace and coredump (you can
use pandora.isc.org for large uploads).
It might be problematic to debug this as we don’t have any ppc64el hardware
available at our disposal.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be
will be published as soon as they are ready.
Sorry for any inconvenience this might have caused, we wish we would have
caught this during our extensive testing, but alas we didn’t.
Thanks,
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 18. 6. 2021, at 5:56, Michael McNally wrote:
>
give you an update in case you already read the issue (and/or
my previous email).
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 18. 6. 2021, at 9:03, Ondřej Surý wrote:
>
> Hi,
>
> let me add more details to the issue.
>
> # Who’s affected
>
> Authoritative
you want to keep running BIND 9 on Windows, you will have to
downgrade
to the lastest stable 9.16 release.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 18. 6. 2021, at 14:46, Peter via bind-users
> wrote:
>
> Well I don't know about anyone else but BIND 9.17.14 did not
Neither can we. Testing the Windows release is part of release process and both
9.16 and 9.17 passed the test suite.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 18
John,
yes, all ISC packages have fix to W problem either as a full release or a patch
set.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 18. 6. 2021, at 21:33, J
patience,
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from
Running named from console as:
named -g -d 1 -c /named.conf
might give you some hints on what might be the problem.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On
Brett,
you haven’t said the version, but readthedocs.io has a version picker, so you
can go with the version you are interested in (v9.16 and up) with “latest”
referring to the latest stable branch (v9.16.xx).
Ondřej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 21. 6. 2021, at 21:58, Br
Eric,
configure uses pkg-config to detect OpenSSL version thus you need to point
pkg-config to the right directory.
There’s no such option to configure.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply
Oh, you are right. That will get only used when pkg-config based method doesn’t
work. We probably should remove that as openssl.pc is now widely available.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply
Setting PKG_CONFIG_PATH should work as charm…
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 5. 7. 2021, at 19:33, Eric Germann wrote:
>
> Bummer.
>
> Thank
Like this?
https://kb.isc.org/docs/isc-packages-for-bind-9
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 6. 7. 2021, at 14:44, MURTARI, JOHN wrote:
>
>
> F
In such case, just don’t do it. The option was meant was early deployments
where IPv6 would be utterly broken. This isn’t a case anymore.
FTR the option is now a separate plugin that needs to be loaded first. But as I
said, just don’t do that, it’s not needed.
Ondrej
--
Ondřej Surý — ISC (He
Thanks, having such a simple reproducer is helpful.
Can you try if adding `-n 8` vs `-n 7` have the same effect?
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 23
pthread_create.c:477
#6 0x7feaf114bdef in clone () at
../sysdeps/unix/sysv/linux/x86_64/clone.S:95
Perhaps somebody might want to fill issue with the libuv, so it resets the
internal thread names.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 5. 7. 2021, at 10:28, Petr Menšík wr
through the hassle of building a
Debug version
of `named` in a local Visual Studio 2017, I can pass a recipe.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 23. 7. 2021, at 20:53, Ondřej Surý wrote:
>
> Thanks, having such a simple reproducer is helpful.
>
> Can you try if a
Dennis,
not sure why you are repeating the message you sent to the list before, but
here’s
the answer I gave you in May and it is still true:
https://lists.isc.org/pipermail/bind-users/2021-May/104587.html
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 30. 7. 2021, at 16:38, Dennis Cla
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal working hours.
> On 1. 8. 2021, at 0:06, Dennis Clarke wrote:
>
> What you are saying is that your testsuite is not portable. It may or
> may
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 5. 8. 2021, at 14:37, Siva Kakarla wrote:
>
> Hello Everyone,
>
> I am trying to understand and set up a fuzzer for the Bind DNS
> implementation. My current goal is to fuzz the authoritative server with
> queries.
>
&g
you want
to do that on various levels of DNS tree and for various query types. It’s a
state machine and by doing fuzzing on single level, you might never hit all the
states.
Ondrej
--
Ondřej Surý (He/Him)
ond...@isc.org
> On 5. 8. 2021, at 18:01, Ondřej Surý wrote:
>
>
> --
>
query + all DNS messages needed to resolve the query)
would be more useful that just fuzzing “stuff”.
Also I think that for more complex stuff it would be better to write a protocol
specific input generator than just generic one found in existing fuzzers.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My
Hi,
no, ANAME is dead standard and it has been replaced by HTTPS SVCB:
https://datatracker.ietf.org/doc/draft-ietf-dnsop-svcb-https/
The support for the draft is in review and it will be merged some time this
year.
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be
No, and there’s no strong usercase for that. The ANAME was wrong on every level
from the protocol perspective and I am glad it is gone.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal
That looks like a bug. Please fill a GitLab issue so there’s a permanent record
of it. Most probably this is due some combination of configure flags that we
don’t use in testing.
Ondrej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
201 - 300 of 622 matches
Mail list logo
