upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-02-25 19:04:57 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
bind9/bin
History
Ondřej Surý 011e9418ce Disable lame-ttl cache 
The lame-ttl cache is implemented in ADB as per-server locked
linked-list "indexed" with <qname,qtype>.  This list has to be walked
every time there's a new query or new record added into the lame cache.
Determined attacker can use this to degrade performance of the resolver.

Resolver testing has shown that disabling the lame cache has little
impact on the resolver performance and it's a minimal viable defense
against this kind of attack.
2021-10-28 12:05:58 +02:00
..
check remove all references to isc_socket and related types 2021-10-15 01:01:25 -07:00
confgen Use #pragma once as header guards 2021-10-13 00:49:15 -07:00
delv remove all references to isc_socket and related types 2021-10-15 01:01:25 -07:00
dig remove all references to isc_socket and related types 2021-10-15 01:01:25 -07:00
dnssec remove all references to isc_socket and related types 2021-10-15 01:01:25 -07:00
named Disable lame-ttl cache 2021-10-28 12:05:58 +02:00
nsupdate remove all references to isc_socket and related types 2021-10-15 01:01:25 -07:00
plugins Make isc_result a static enum 2021-10-06 11:22:20 +02:00
rndc Update rndc serve-stale status output 2021-10-25 10:42:10 +02:00
tests Handle duplicate catalog zone entries gracefully 2021-10-27 01:32:57 +11:00
tools remove all references to isc_socket and related types 2021-10-15 01:01:25 -07:00
Makefile.am Remove native PKCS#11 support 2021-09-09 15:35:39 +02:00