unbound

Validating, recursive, and caching DNS(SEC) resolver

Go to file

Petr Menšík b16abc1d53 Update to 1.24.2 - Fixes CVE-2025-11411 Features from 1.24: - Increase default to `num-queries-per-thread: 2048` - num.valops in extended statistics - unbound-control cache_lookup <domains> support - zone status for auth-zones Features from 1.23: - Increase the default of max-global-quota to 200 from 128 - The default value of serve-expired-client-timeout is set to 1800 - Support for RESINFO RRType 261 (RFC9606). - Add resolver.arpa and service.arpa to the default locally served zones. - Fast Reload. The unbound-control fast_reload is added. - DNS Error Reporting (RFC 9567). Features from 1.22: - Add iter-scrub-ns, iter-scrub-cname and max-global-quota configuration options. - Merge patch to fix for glue that is outside of zone, with `harden-unverified-glue` - log timestamps in ISO8601 format with timezone - DNS over QUIC. This adds `quic-port: 853` and `quic-size: 8m`. Requires ngtcp2, not yet in RHEL. Features from 1.21: - Clear both in-memory and cachedb module cache with `unbound-control flush*` commands. - Add dnstap-sample-rate that logs only 1/N messages. - Add root key 38696 from 2024 for DNSSEC validation. - Cookie secret file. Adds `cookie-secret-file option. And a lot of bug fixes. https://nlnetlabs.nl/projects/unbound/download/#unbound-1-24-2 Resolves: RHEL-132717		2026-01-13 13:50:27 +01:00
.gitignore	Update to 1.24.2	2026-01-13 13:50:27 +01:00
block-example.com.conf	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
example.com.conf	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
example.com.key	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
gating.yaml	gating.yaml added	2021-05-31 15:50:22 +02:00
icannbundle.pem	Update icann bundle, fix spec errors	2022-06-15 21:41:14 +02:00
module-setup.sh	Add dracut module	2025-02-05 16:21:31 +01:00
remote-control.conf	Ensure group access correction reaches also updated configs	2024-04-18 17:13:43 +02:00
root.anchor	Add new DNSSEC root anchor 38696	2025-11-25 12:58:27 +01:00
root.key	Add new DNSSEC root anchor 38696	2025-11-25 12:58:27 +01:00
sources	Update to 1.24.2	2026-01-13 13:50:27 +01:00
tmpfiles-unbound-libs.conf	Create root key if missing automatically	2025-11-11 13:24:02 +01:00
tmpfiles-unbound.conf	Add possibility to disable unbound-anchor by file presence	2025-02-10 22:17:00 +01:00
unbound_munin_	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-1.8.0-rh1633874.patch	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-1.8.1-keygen-group-rights.patch	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-1.8.2-dns64.patch	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-aarch64.patch	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-anchor.service	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-anchor.timer	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound-as112-networks.conf	Add as112 networks config file	2025-02-10 22:17:04 +01:00
unbound-fedora-config.patch	Update to 1.24.2	2026-01-13 13:50:27 +01:00
unbound-initrd.conf	Add dracut module	2025-02-05 16:21:31 +01:00
unbound-keygen.service	Do not keep keygen running, check certs each time	2022-06-15 21:47:57 +02:00
unbound-local-root.conf	Move automatic root zone fetching to drop-in	2025-02-05 16:21:28 +01:00
unbound-munin.README	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound.conf	Move automatic root zone fetching to drop-in	2025-02-05 16:21:28 +01:00
unbound.munin	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound.service	Add possibility to disable unbound-anchor by file presence	2025-02-10 22:17:00 +01:00
unbound.spec	Update to 1.24.2	2026-01-13 13:50:27 +01:00
unbound.sysconfig	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00
unbound.sysusers	Add sysusers support needed to propagate user to initramfs	2025-02-09 17:16:20 +01:00
wouter.nlnetlabs.nl.key	RHEL 9.0.0 Alpha bootstrap	2020-10-15 13:12:18 -07:00