Requested addition to portage of Unbound: http://www.unbound.net/ Reproducible: Always Version 1.0.0 released. A caching/resolving server from those that bring us the NSD authoritative DNS server.
Created attachment 154183 [details] net-dns/unbound-1.0.0.ebuild
Created attachment 154185 [details, diff] files/1.0.0-config.patch
Created attachment 154187 [details] files/unbound.initd
Created attachment 157157 [details] unbound svn trunk ebuils Had some issues with the 1.0.0 release and decided to try the svn build (which did solve my problems). So I offer the this ebuild for those who wish to use it - note: it does not apply the 1.0.0-config.patch offered.
Created attachment 160743 [details, diff] add depend flags to unbound.initd see bug #128246 for explanation
Created attachment 161548 [details] unbound-1.0.1.ebuild version bump to unbound 1.0.1 * uses ./configure to specify nice values for config and pid file * updated initd file, fixed seveal problems I had some problems with the combination nsd/unbound/syslog-ng and restarts, caused by the values in the depend() method. I changed it to an "after" clause, which solved the issue. Also I changed the "provide dnssrv" in nsd to a more descriptive "auth-dns". I'm willing to maintain nsd, ldns and unbound in sunrise overlay, so any comments are welcome.
Created attachment 161549 [details, diff] 1.0.1-config.patch patch to disable chroot in config file
Created attachment 161550 [details] nbound.initd
Created attachment 165235 [details] unbound svn trunk ebuild minor change necessary to build svn revisions > 1168
Created attachment 168690 [details] unbound-9999.ebuild slight change to build with -j1 as the svn doesn't always build otherwise
The unbound ebuild in Sunrise overlay is updated to version 1.1.1 today (and will be available after review, in a few days).
Created attachment 196489 [details] unbound 1.3.0 ebuild The unbound ebuild in Sunrise overlay is updated to version 1.3.0
Created attachment 204702 [details] unbound 1.3.3 ebuild The unbound ebuild in Sunrise overlay is updated to version 1.3.3
Created attachment 206207 [details] net-dns/unbound-1.3.3.ebuild clean up
Created attachment 206208 [details, diff] files/unbound-1.3.3-gentoo.patch
There has been a vulnerability report for unbound: Name: CVE-2009-3602 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3602 Published: 2009-10-13 Severity: High Description: Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses. Please note that the first commiter to gentoo-x86 is required to verify that this issue is fixed before adding the package to the tree. Please contact security@g.o with any questions. Thanks.
Created attachment 207160 [details] net-dns/unbound-1.3.4.ebuild
Created attachment 207165 [details] files/unbound.initd
Created attachment 207167 [details] files/unbound.confd
Created attachment 207371 [details] net-dns/unbound-1.3.4.ebuild
Created attachment 207373 [details] files/unbound.initd
Created attachment 207374 [details] files/unbound.confd
Sunrise version was bumped (I was on a holiday). @matsuu: any chance that unbound goes into main portage tree?
in cvs now.
Just a quick thanks for this guys - I was recently introduced to unbound (and nsd for forward facing authorative dns) and am really loving this over bind (server) and dnsmasq (laptop) and use unbound everywhere! Fancy putting nsd into portage? http://www.nlnetlabs.nl/projects/nsd/
Created attachment 228769 [details] updated unbound svn ebuild Been using unbound svn for quite a while and realized my ebuild here was out of date so thought I would send up the latest version. The ldns use flag is turned on by default and it's probably a good idea to use ldns-9999 with this (currently mandatory for gost support) or turn it off and let unbound use the internally shipped tarball to build ldns (it's newer than the released version). My ldns-9999.ebuild also builds and installs the drill tool (like bind's dig).
Created attachment 228771 [details] ldns svn ebuild Builds ldns from svn and also the optional drill tool (like bind's dig tool).
Created attachment 229575 [details] unbound-9999.ebuild a little tweaking to improve the ebuild
Created attachment 229577 [details] ldns-9999.ebuild some tweaking here as well