Posts Tagged ‘DNS in action’

DNS BIND v9.7 Release for Sun Solaris 10 SPARC x64 bit

April 5th, 2010 | Author: Eldar Aydayev


Cincopa video hosting solution for your website. Another great product from Cincopa Send Files.

BIND 9.7.0 includes a number of changes from BIND 9.6 and earlier releases. Most are intended to simplify DNSSEC configuration.

New features include:

  • Fully automatic signing of zones by "named"
  • Simplified configuration of DNSSEC Lookaside Validation (DLV).
  • Simplified configuration of Dynamic DNS, using the "ddns-confgen" command line tool or the "local" update-policy option. (As a side effect, this also makes it easier to configure automatic zone re-signing.)
  • New named option "attach-cache" that allows multiple views to share a single cache.
  • DNS rebinding attack prevention.
  • New default values for dnssec-keygen parameters.
  • Support for RFC 5011 automated trust anchor maintenance (see README.rfc5011 for additional details).
  • Smart signing: simplified tools for zone signing and key maintenance.
  • The "statistics-channels" option is now available on Windows.
  • A new DNSSEC-aware libdns API for use by non-BIND9 applications (see README.libdns for details).
  • On some platforms, named and other binaries can now print out a stack backtrace on assertion failure, to aid in debugging.
  • A "tools only" installation mode on Windows, which only installs dig, host, nslookup and nsupdate.
  • Improved PKCS#11 support, including Keyper support and explicit OpenSSL engine selection (see README.pkcs11 for additional details).
Read the rest of this entry »



Posted in BIND DNS, Software | Tags: , , , , , , , , , , , , , , , , , , | 2 Comments »

BIND v 9.6.2 FINALL DNS 64BIT VERSION FOR SOLARIS 10 SPARC EDITION

February 7th, 2010 | Author: Eldar Aydayev


Cincopa video hosting solution for your website. Another great product from Cincopa Send Files.

Today I released next BIND v 9.6.2 62bit version for Solaris 10 sparc Edition.

It compiled with origin SUN Solaris 10 C/C++ library links and system shared sources without any links to GNU C (GCC) and other kind Free Foundation tools.

You can download it from bellow link:

binary_ready_BIND_9.6.2.tar.bz2

To build right configuration file you can use full reference documentation:

BIND 9 Administrator Reference Manual

 

New features in BIND 9.6.2:

Full NSEC3 support

BIND 9.6 includes support for the NSEC3 record generation as defined in RFC 5155, DNS Security (DNSSEC) Hashed Authenticated Denial of Existence. As an alternative to NSEC, it can prevent walking DNSSEC zones (zone enumeration). It also permits gradual expansion of delegation-centric zones. (NSEC3 has an opt-out bit which lets the zone owner save overhead by skipping over signing delegations to unsigned children zones.)

NSEC3 is not recommended unless there is a pressing need for the features NSEC3 provides. It is expensive for both the server and the client. Most zones do not need the addition expense incured by the use of NSEC3.

 

Read the rest of this entry »



Posted in BIND DNS | Tags: , , , , , , , , , , , , , , , , , , | No Comments »
Login



Subscribe

Enter your email address:

Contact Us | Home | Top Page
Copyright © 2009 Eldar Aydayev's Professional Works. All Rights Reserved.

Designed by Eldar Aydayev | Aydayev's Investment Business Group