Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

dnscrypt-proxy-1.9.5-lp152.3.6 RPM for ppc64le

From OpenSuSE Ports Leap 15.2 for ppc64le

Name: dnscrypt-proxy Distribution: openSUSE:Leap:15.2:PowerPC / ports
Version: 1.9.5 Vendor: openSUSE
Release: lp152.3.6 Build date: Sat May 16 13:05:53 2020
Group: Productivity/Networking/DNS/Utilities Build host: obs-power8-05
Size: 1135008 Source RPM: dnscrypt-proxy-1.9.5-lp152.3.6.src.rpm
Packager: https://bugs.opensuse.org
Url: https://dnscrypt.org/
Summary: A tool for securing communications between a client and a DNS resolver
dnscrypt-proxy provides local service which can be used directly as your local resolver or as a DNS forwarder,
encrypting and authenticating requests using the DNSCrypt protocol and passing them to an upstream server,
by default Cisco who run this on their resolvers. (It used to be OpenDNS.)

The DNSCrypt protocol uses elliptic-curve cryptography and is similar to DNSCurve, but focuses on
securing communications between a client and its first-level resolver.

While not providing end-to-end security, it protects the local network, which is often the weakest point
of the chain, against man-in-the-middle attacks. It also provides some confidentiality to DNS queries.

Provides

Requires

License

BSD-3-Clause

Changelog

* Mon Oct 23 2017 bwiedemann@suse.com
  - Make builds reproducible by using a constant __DATE__ (boo#1047218)
* Wed Sep 06 2017 jengelh@inai.de
  - Errors from user creation from pre scriptlet must not be ignored.
  - Ensure neutrality of description.
* Sat Aug 05 2017 sebix+novell.com@sebix.at
  - use packaged dnscrypt-resolvers.csv
  - fix systemd macros
* Sun Jul 09 2017 sebix+novell.com@sebix.at
  - upgrade to 1.9.5, shortened upstream changelog:
    * Cache plugin: fix the way items are moved from recent to frequent lists
    * In addition to making the cache work as expected, this prevents
    `CacheEntry` items from becoming orphans.
    * Cache plugin: fix the way items are moved from recent to frequent lists
    * In addition to making the cache work as expected, this prevents
    `CacheEntry` items from becoming orphans.
    * Adding Babylon Network resolvers (#647)
    * Update resolvers list
    * Reset the reachability of nameservers if all are unreachable (#609)
    * If all nameservers have been marked unreachable, they will not be queried
    * again until dnscrypt-proxy is restarted. This fix allows for queries to be
    * retried without restarting dnscrypt-proxy.
    * Doc error: client-pk is the client' public key. Spotted by @willnix Fixes #603
    * Whitelist some TLDs typically used on local networks
    * Normalize the dnscrypt-resolvers.csv format
    * ldns-blocking: fix another corner case with suffix matching
      Ruleset:
      ```
    * .example.com
      ru.example.com
      ```
      A query for `xru.example.com` would find `ru.example.com` as the longest
      suffix. The expression didn't match since this is neither an exact match
      nor a match that stops at a label.
      However, this was ignoring the fact that there a different, shorter rule
      could match.
      This is pretty annoying, as keeping our promise to log the longest match
      means that we need at least yet another lookup in that specific case.
      Alternatively, the fpst lookup function could be specialized to stop at
      labels, but that would defeat the point of this example plugin. So,
      perform an extra lookup after striping the first (last, once the name is
      reversed) label.
    * Added pidfile
  - specfile fixes, cleanup
* Sun Jan 29 2017 i@marguerite.su
  - update version 1.9.4
    * The resolver name can be set to 'random' in order to pick a
      random resolver.
    * changelog for older releases see github/jedisct1/dnscrypt-proxy
  - use upstream configuration instead
* Sun Jan 29 2017 i@marguerite.su
  - drop /etc/sysconfig/dnscrypt-proxy, it can'be used in instantiated
    services, now instantiated services should be started with
    "sudo systemctl start dnscrypt-proxy@config.service", the switch
    from IP:Port to Config is because we need not only the IP:Port
    customizable, but also the DNSCRYPT_RESOLVER_NAME, to start multi-
    instances. (boo#977946)
  - add /etc/dnscrypt-proxy.conf.d directory for configurations.
* Sat Aug 13 2016 i@marguerite.su
  - switched to systemd template service. in the future, users
    should use 'sudo systemctl start dnscrypt-proxy@127.0.0.1:53.service'
    to start the service. any local address can be used.
  - dropped dnscrypt-proxy.socket again. the listen address in the
    socket can't be substituted at runtime that makes it impossible
    to use multiple instances. and it doesn't work together with
    the forking method in our systemd service.
  - move pidfile and logfile into their own directories. in previous
    submit, we finnaly used the user 'dnscrypt' to start the job, but
    that user doesn't have write permission for /var/run and /var/log.
  - dropped the /usr/sbin/dnscrypt wrapper that broke the systemd
    service from forking. we used EnvironmentFile in systemd service
    to load the user-customizable variables.
  - changed /etc/sysconfig/dnscrypt to /etc/sysconfig/dnscrypt-proxy.
    deleted those plugin items that can't be loaded by systemd. users
    can use DNSCRYPT_OPTIONS to configure the plugins anyway, no need
    to keep those placeholders.
* Sat Aug 06 2016 i@marguerite.su
  - update version 1.7.0
    * Plugins are now enabled by default.
    * New command-line option: `--ignore-timestamps` to ignore timestamps
      when performing certificate validation.
    * New command-line option: `--syslog-prefix` to add a prefix to log
      messages.
    * Certificates can now be retrieved using TCP.
    * Libevent was updated to version 2.0.23.
    * Certificates serial numbers are printed as a string if possible.
    * The list of known public resolvers was updated.
  - add upstream's systemd socket, fix boo#977946 again
* Thu Jun 09 2016 i@marguerite.su
  - fix boo#977946 & boo#957003
    * use %fillup_only macro right. can't skip "-n", or it'll use
      package name while sysconfig.dnscrypt-proxy doesn't exist.
  - use %fillup_prereq macro
  - move libraries out from -devel subpackage, it's just not right.
  - don't link dnscrypt-proxy.8.gz to dnscrypt.8.gz
  - don't link /sbin/service to /sbin/rcdnscrypt.
    * that method is used for backward compability w/ SysVInit service
      while /sbin/dnscrypt is a wrapper to the actual command, and
      dnscrypt is not a valid service name but dnscrypt-proxy.
* Thu Feb 11 2016 dsterba@suse.cz
  * version 1.6.1:
    - Security: malformed packets could cause the OpenDNS deviceid,
    OpenDNS set-client-ip, blocking and AAAA blocking plugins to use
    uninitialized pointers, leading to a denial of service or possibly
    code execution. The vulnerable code is present since dnscrypt-proxy
    1.1.0. OpenDNS users and people using dnscrypt-proxy in order to block
    domain names and IP addresses should upgrade as soon as possible.
  - add dnscrypt-resolvers.csv from git (41c6d8bb1f49a0216357)
* Thu Dec 17 2015 dsterba@suse.cz
  - add dnscrypt-resolvers.csv from git (e6b4e93d07bdce39d4656c5a6)
  - change default resolver to cisco (bnc#957003)
* Mon Aug 31 2015 dsterba@suse.cz
  * version 1.6.0:
    - New feature: public-key based client authentication (-K), for private and
    commercial DNS services to securely authenticate the sender of a query no
    matter what the source IP address is, without altering the DNS query.
    * version 1.5.0:
    - New option: -E, to use an ephemeral key pair for each query.
    - Logging to files is supported on Windows.
    - TCP FASTOPEN is now enabled on Linux.
    * version 1.4.4
    - edns used by default
    - server list updated
    - various build fixes
  - spec file cleanup
* Thu Mar 05 2015 dsterba@suse.cz
  - update to 1.4.3
    - libevent update, including a fix for CVE-2014-6272
    - Two new public dnscrypt resolvers were added: opennic-us-wa-ns1 and
      dnscrypt.org-fr
    - d0wn servers in France IP have changed.
    - Compilation fixes.
  - version 1.4.2
    - New compilation switch: --with-systemd, to enable socket activation support
      when using systemd
    - The list of public DNSCrypt-enabled resolvers was updated
    - Libevent2 updates
  - add sysconfig file for more flexible configuration
  - build -devel package and enable plugins
  - create user dnscrypt:dnscrypt during installation

Files

/etc/dnscrypt-proxy.conf.d
/etc/dnscrypt-proxy.conf.d/default.conf
/run/dnscrypt-proxy
/usr/bin/hostip
/usr/lib/systemd/system/dnscrypt-proxy@.service
/usr/lib/tmpfiles.d/dnscrypt-proxy.conf
/usr/lib64/dnscrypt-proxy
/usr/lib64/dnscrypt-proxy/libdcplugin_example.so
/usr/lib64/dnscrypt-proxy/libdcplugin_example_cache.so
/usr/lib64/dnscrypt-proxy/libdcplugin_example_logging.so
/usr/sbin/dnscrypt-proxy
/usr/sbin/rcdnscrypt-proxy
/usr/share/dnscrypt-proxy
/usr/share/dnscrypt-proxy/dnscrypt-resolvers.csv
/usr/share/dnscrypt-proxy/minisign.pub
/usr/share/doc/packages/dnscrypt-proxy
/usr/share/doc/packages/dnscrypt-proxy/AUTHORS
/usr/share/doc/packages/dnscrypt-proxy/ChangeLog
/usr/share/doc/packages/dnscrypt-proxy/DNSCRYPT-V2-PROTOCOL.txt
/usr/share/doc/packages/dnscrypt-proxy/NEWS
/usr/share/doc/packages/dnscrypt-proxy/README-PLUGINS.markdown
/usr/share/doc/packages/dnscrypt-proxy/README.markdown
/usr/share/doc/packages/dnscrypt-proxy/THANKS
/usr/share/doc/packages/dnscrypt-proxy/dnscrypt-proxy.conf
/usr/share/licenses/dnscrypt-proxy
/usr/share/licenses/dnscrypt-proxy/COPYING
/usr/share/man/man8/dnscrypt-proxy.8.gz
/usr/share/man/man8/hostip.8.gz
/var/log/dnscrypt-proxy


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 11:51:01 2024