Bug 126282

Summary: [MAINTAINER] dns/powerdns: update to 2.9.21.1 (Security update!!!)
Product: Ports & Packages Reporter: Ralf van der Enden <tremere>
Component: Individual Port(s)Assignee: Martin Wilke <miwi>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
powerdns-2.9.21.1.patch none

Description Ralf van der Enden 2008-08-05 21:20:02 UTC 
- Update to 2.9.21.1

NOTE: This is a security update!!!

Quoted from a mail from the PowerDNS admin:

...

"Brian Dowling of Simplicity Communications and Florian Weimer have brought
some bad PowerDNS behaviour to my attention.
 
In short, PowerDNS does not respond to certain queries it considers
malformed. This in itself is not a problem, and was even thought of as a
security measure.
 
Brian and Florian, independently I think, have discovered that not answering
a query for an invalid DNS record within a valid domain allows for a larger
spoofing window of the valid domain. Because of the Kaminsky-discovery, this
has become bad.
 
For a sophisticated attacker, this provides no benefit. However, such a long
window allows unsophisticated hackers to achieve better results."

...

Removed file(s):
- files/patch-pdns_qtype_cc

Generated with FreeBSD Port Tools 0.77
Comment 1 Martin Wilke freebsd_committer freebsd_triage 2008-08-06 11:50:38 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->miwi

I'll take it.
Comment 2 Ralf van der Enden 2008-08-07 06:57:45 UTC 
Hello,

I've removed the patch-file for qtype by mistake. Could you please strip  
that part from the patch ?

Sorry about that.

-- 
Best regards,
Ralf van der Enden
Comment 3 dfilter service freebsd_committer freebsd_triage 2008-08-07 13:11:01 UTC 
miwi        2008-08-07 12:10:52 UTC

  FreeBSD ports repository

  Modified files:
    dns/powerdns         Makefile distinfo pkg-plist 
  Log:
  - Update to 2.9.21.1
  
  PR:             126282
  Submitted by:   Ralf van der Enden <tremere@cainites.net>
  
  Revision  Changes    Path
  1.62      +2 -7      ports/dns/powerdns/Makefile
  1.17      +3 -3      ports/dns/powerdns/distinfo
  1.17      +6 -6      ports/dns/powerdns/pkg-plist
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 4 Martin Wilke freebsd_committer freebsd_triage 2008-08-07 13:11:02 UTC 
State Changed
From-To: open->closed

Committed. Thanks!