README revision e2a24b6e79572bd578d67b976208e19caf62e0f7
b90dd6c0a9df584619d3c47be7c9417f55d5ccf6Bob Halley BIND version 9 is a major rewrite of nearly all aspects of the
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson underlying BIND architecture. Some of the important features of
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson - DNS Security
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson DNSSEC (signed zones)
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson TSIG (signed DNS requests)
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson - IP version 6
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Answers DNS queries on IPv6 sockets
fd9b6f253eac9dae2e1ad19d49aaa922d5d4f274Mark Andrews IPv6 resource records (AAAA)
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Experimental IPv6 Resolver Library
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson - DNS Protocol Enhancements
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson IXFR, DDNS, Notify, EDNS0
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Improved standards conformance
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson One server process can provide multiple "views" of
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson the DNS namespace, e.g. an "inside" view to certain
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson clients, and an "outside" view to others.
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson - Multiprocessor Support
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson - Improved Portability Architecture
b90dd6c0a9df584619d3c47be7c9417f55d5ccf6Bob Halley BIND version 9 development has been underwritten by the following
b90dd6c0a9df584619d3c47be7c9417f55d5ccf6Bob Halley organizations:
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Sun Microsystems, Inc.
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Hewlett Packard
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Compaq Computer Corporation
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Process Software Corporation
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Silicon Graphics, Inc.
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson Network Associates, Inc.
16803617e47c83272013e45ba8eb83a3b11983edAndreas Gustafsson U.S. Defense Information Systems Agency
70680fa51b0147c726b939b72b2420249429756aBob Halley USENIX Association
70680fa51b0147c726b939b72b2420249429756aBob Halley Stichting NLnet - NLnet Foundation
276a77c22af98c78403883b16a82646a0d5b29abPaul Vixie Nominum, Inc.
c45ca0b839adc61c7902aad0969de36921b292b0Mark Andrews BIND 9.6.0 includes a number of changes from BIND 9.5 and earlier
c45ca0b839adc61c7902aad0969de36921b292b0Mark Andrews releases, including:
c45ca0b839adc61c7902aad0969de36921b292b0Mark Andrews Full NSEC3 support
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews Automatic zone re-signing
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews New update-policy methods tcp-self and 6to4-self
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews The BIND 8 resolver library, libbind, has been removed from the
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews BIND 9 distribution and is now available as a separate download.
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews BIND 9.5.0 has a number of new features over 9.4,
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews GSS-TSIG support (RFC 3645).
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews DHCID support.
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews Experimental http server and statistics support for named via xml.
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews More detailed statistics counters including those supported in BIND 8.
1676408640d8283c9f17eec0b183e1302ea7fd70Mark Andrews Faster ACL processing.
c3e0aed7da9ca312a3b25a4eee13573dca04c318Mark Andrews Use Doxygen to generate internal documentation.
c3e0aed7da9ca312a3b25a4eee13573dca04c318Mark Andrews Efficient LRU cache-cleaning mechanism.
c3e0aed7da9ca312a3b25a4eee13573dca04c318Mark Andrews NSID support.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson BIND 9.4.0 has a number of new features over 9.3,
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson Implemented "additional section caching (or acache)", an
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson internal cache framework for additional section content to
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson improve response performance. Several configuration options
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson were provided to control the behavior.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson New notify type 'master-only'. Enable notify for master
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson Accept 'notify-source' style syntax for query-source.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson rndc now allows addresses to be set in the server clauses.
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson New option "allow-query-cache". This lets allow-query be
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson used to specify the default zone access level rather than
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson having to have every zone override the global value.
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson allow-query-cache can be set at both the options and view
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson levels. If allow-query-cache is not set then allow-recursion
672a41b5fef7722803645c1f0ca132972f0f940aAndreas Gustafsson is used if set, otherwise allow-query is used if set, otherwise
8a01f10278e0c794fe1d488bab2f97185f272e26Andreas Gustafsson the default (localhost; localnets;) is used.
b587e1d83f007ce68a9ae93097c461d8eb7aa373Mark Andrews rndc: the source address can now be specified.
8a01f10278e0c794fe1d488bab2f97185f272e26Andreas Gustafsson ixfr-from-differences now takes master and slave in addition
18b393da86f452303036b5fe6feb6c1e5f6b2c02Andreas Gustafsson to yes and no at the options and view levels.
81fb2f5544552e67d7be673e353e399789e203e7Brian Wellington Allow the journal's name to be changed via named.conf.
00205e27e84603f75eed46268a5100e86883f06bAndreas Gustafsson 'rndc notify zone [class [view]]' resend the NOTIFY messages
00205e27e84603f75eed46268a5100e86883f06bAndreas Gustafsson for the specified zone.
317ebe84d581e59f5cb63bc6c1556a479bbb179aAndreas Gustafsson 'dig +trace' now randomly selects the next servers to try.
317ebe84d581e59f5cb63bc6c1556a479bbb179aAndreas Gustafsson Report if there is a bad delegation.
317ebe84d581e59f5cb63bc6c1556a479bbb179aAndreas Gustafsson Improve check-names error messages.
faca6b801dcace871c8a98c8ee1bba8d7e2994a5Brian Wellington Make public the function to read a key file, dst_key_read_public().
cca68b1ff68cd4342705b71015f603c7389d040cAndreas Gustafsson dig now returns the byte count for axfr/ixfr.
5f25ebaaa087893f8f57cc558c4b36eab6c26988Andreas Gustafsson allow-update is now settable at the options / view level.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson named-checkconf now checks the logging configuration.
ecbfd32d3710d539f19a9323f16cf43a095580bdAndreas Gustafsson host now can turn on memory debugging flags with '-m'.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson Don't send notify messages to self.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson Perform sanity checks on NS records which refer to 'in zone' names.
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson New zone option "notify-delay". Specify a minimum delay
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson between sets of NOTIFY messages.
c54c1eaf26d5a7fc123c4af3712353156a766df1Mark Andrews Extend adjusting TTL warning messages.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson Named and named-checkzone can now both check for non-terminal
4d5f44e7933f4cb691e8f4cf3b4b5f61c27e2b1cAndreas Gustafsson wildcard records.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson "rndc freeze/thaw" now freezes/thaws all zones.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson named-checkconf now check acls to verify that they only
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson refer to existing acls.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson The server syntax has been extended to support a range of
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson Report differences between hints and real NS rrset and
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson associated address records.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson Preserve the case of domain names in rdata during zone
73edea95c744a2a9052852d0a63b449599062b30Brian Wellington Restructured the data locking framework using architecture
73edea95c744a2a9052852d0a63b449599062b30Brian Wellington dependent atomic operations (when available), improving
73edea95c744a2a9052852d0a63b449599062b30Brian Wellington response performance on multi-processor machines significantly.
73edea95c744a2a9052852d0a63b449599062b30Brian Wellington x86, x86_64, alpha, powerpc, and mips are currently supported.
7c956aeeeb8da3fd3912b1fb8024ff274e3b07ebAndreas Gustafsson UNIX domain controls are now supported.
3e480b2f811fb4898af49983abf43f0894bb29e5Mark Andrews Add support for additional zone file formats for improving
dc95bcfa9c8437045df06b94e892a329e615bb16Mark Andrews loading performance. The masterfile-format option in
dc95bcfa9c8437045df06b94e892a329e615bb16Mark Andrews named.conf can be used to specify a non-default format. A
dc95bcfa9c8437045df06b94e892a329e615bb16Mark Andrews separate command named-compilezone was provided to generate
dc95bcfa9c8437045df06b94e892a329e615bb16Mark Andrews zone files in the new format. Additionally, the -I and -O
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson options for dnssec-signzone specify the input and output
0ec9b06f0bd6cc3ce327a3c70db53672957fa372Andreas Gustafsson dnssec-signzone can now randomize signature end times
0ec9b06f0bd6cc3ce327a3c70db53672957fa372Andreas Gustafsson (dnssec-signzone -j jitter).
e5256e34b4a26a26088b2dc5ca621b42c0750256Andreas Gustafsson Add support for CH A record.
b90dd6c0a9df584619d3c47be7c9417f55d5ccf6Bob Halley Add additional zone data constancy checks. named-checkzone
276a77c22af98c78403883b16a82646a0d5b29abPaul Vixie has extended checking of NS, MX and SRV record and the hosts
40d01ce8f3a1889f5799d9b22b26d5398fa75a1bBob Halley they reference. named has extended post zone load checks.
40d01ce8f3a1889f5799d9b22b26d5398fa75a1bBob Halley New zone options: check-mx and integrity-check.
8db66dc4eb654a2e295eaeab3aaf96e24c9ae7b7Bob Halley edns-udp-size can now be overridden on a per server basis.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley dig can now specify the EDNS version when making a query.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Added framework for handling multiple EDNS versions.
2ecf7f63a01ca8a96d76f7d2d4de0fa37f3e3fabOlafur Gudmundsson Additional memory debugging support to track size and mctx
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson Detect duplicates of UDP queries we are recursing on and
b3d8bec59201fd0edbe38f909bda5014d7776b89Brian Wellington drop them. New stats category "duplicates".
faf2b80fe31d8dc9e10bf2cf697ccceef2ffa353Andreas Gustafsson "USE INTERNAL MALLOC" is now runtime selectable.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson The lame cache is now done on a <qname,qclass,qtype> basis
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson as some servers only appear to be lame for certain query
a9bd2eab109801125605b1db8a69f625c3610aebDavid Lawrence Limit the number of recursive clients that can be waiting
a158d032df9d09fd89a03767bcea28ac58c61180Andreas Gustafsson for a single query (<qname,qtype,qclass>) to resolve. New
97c5be1daa4257ff54ea05ddb683867cadd5823fAndreas Gustafsson options clients-per-query and max-clients-per-query.
b1c6a6c514b05a0ebb65656f154be54a3ee01ab5Mark Andrews dig: report the number of extra bytes still left in the
dd9569905456bc5ba916122a73016c99fb058dc7Andreas Gustafsson packet after processing all the records.
6905fe248b89a0fd5b892ab8569e50cffe763ed0Andreas Gustafsson Support for IPSECKEY rdata type.
ca2ebf900db9b2aea2a347ada67a266238eb3de4Mark Andrews Raise the UDP recieve buffer size to 32k if it is less than 32k.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley x86 and x86_64 now have seperate atomic locking implementations.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley named-checkconf now validates update-policy entries.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Attempt to make the amount of work performed in a iteration
8eb5937a7e4cb8b5d7fcc1be17d34fdd014bbbb1Andreas Gustafsson self tuning. The covers nodes clean from the cache per
8eb5937a7e4cb8b5d7fcc1be17d34fdd014bbbb1Andreas Gustafsson iteration, nodes written to disk when rewriting a master
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson file and nodes destroyed per iteration when destroying a
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson zone or a cache.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson ISC string copy API.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson Automatic empty zone creation for D.F.IP6.ARPA and friends.
b70fc17acec2c036bb35a937ba00fbcf10848859David Lawrence Note: RFC 1918 zones are not yet covered by this but are
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson likely to be in a future release.
ff69418be422164cad3be4a14a7ca56e668251edMark Andrews New options: empty-server, empty-contact, empty-zones-enable
b70fc17acec2c036bb35a937ba00fbcf10848859David Lawrence and disable-empty-zone.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson dig now has a '-q queryname' and '+showsearch' options.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson host/nslookup now continue (default)/fail on SERVFAIL.
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson dig now warns if 'RA' is not set in the answer when 'RD'
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson was set in the query. host/nslookup skip servers that fail
3b8932de20e12b07f9d874d5538d30e1fac9a9f4Andreas Gustafsson to set 'RA' when 'RD' is set unless a server is explicitly
ee80f4506479e189ca1320eb87ac89188c5a7848Mark Andrews Integrate contibuted DLZ code into named.
1ae75c1024eb0475c2be352b8707772e16332ad0Mark Andrews Integrate contibuted IDN code from JPNIC.
1ae75c1024eb0475c2be352b8707772e16332ad0Mark Andrews libbind: corresponds to that from BIND 8.4.7.
69930116e30137705d3b87d05cbfbc5712386fdeAndreas Gustafsson BIND 9.3.0 has a number of new features over 9.2,
f72a461c766a4cedc705e1ed0d6d2bb999a393f1Andreas Gustafsson DNSSEC is now DS based (RFC 3658).
f72a461c766a4cedc705e1ed0d6d2bb999a393f1Andreas Gustafsson See also RFC 3845, doc/draft/draft-ietf-dnsext-dnssec-*.
f72a461c766a4cedc705e1ed0d6d2bb999a393f1Andreas Gustafsson DNSSEC lookaside validation.
f72a461c766a4cedc705e1ed0d6d2bb999a393f1Andreas Gustafsson check-names is now implemented.
5c5a746d5745802c3b825bb68d03fb1e97759cddMark Andrews rrset-order in more complete.
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson IPv4/IPv6 transition support, dual-stack-servers.
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson IXFR deltas can now be generated when loading master files,
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson ixfr-from-differences.
8c4f1fa179f8f2fc56a9fa9294682a080e8756eeAndreas Gustafsson It is now possible to specify the size of a journal, max-journal-size.
e21262ae8af5d12f64a2242e26338f36901ba4ccAndreas Gustafsson It is now possible to define a named set of master servers to be
e21262ae8af5d12f64a2242e26338f36901ba4ccAndreas Gustafsson used in masters clause, masters.
40f53fa8d9c6a4fc38c0014495e7a42b08f52481David Lawrence The advertised EDNS UDP size can now be set, edns-udp-size.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley allow-v6-synthesis has been obsoleted.
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson * Zones containing MD and MF will now be rejected.
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson * dig, nslookup name. now report "Not Implemented" as
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson NOTIMP rather than NOTIMPL. This will have impact on scripts
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson that are looking for NOTIMPL.
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson libbind: corresponds to that from BIND 8.4.5.
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson BIND 9.2.0 has a number of new features over 9.1,
00b1381f1384a8a3df80e467b2ef7a7692d0d567Andreas Gustafsson - The size of the cache can now be limited using the
5f5bb44065a3e7f506e4afd4d81c89da2931bf1bBob Halley "max-cache-size" option.
5f5bb44065a3e7f506e4afd4d81c89da2931bf1bBob Halley - The server can now automatically convert RFC1886-style
5f5bb44065a3e7f506e4afd4d81c89da2931bf1bBob Halley recursive lookup requests into RFC2874-style lookups,
b3ebf6f2756b0f4061fdf84c098bad175ea3ab65Mark Andrews when enabled using the new option "allow-v6-synthesis".
b3ebf6f2756b0f4061fdf84c098bad175ea3ab65Mark Andrews This allows stub resolvers that support AAAA records
b3ebf6f2756b0f4061fdf84c098bad175ea3ab65Mark Andrews but not A6 record chains or binary labels to perform
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley lookups in domains that make use of these IPv6 DNS
ff69418be422164cad3be4a14a7ca56e668251edMark Andrews - Performance has been improved.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley - The man pages now use the more portable "man" macros
4efe2e812cf8462ed781bfd79b644eaf17d6d2b7Andreas Gustafsson rather than the "mandoc" macros, and are installed
4efe2e812cf8462ed781bfd79b644eaf17d6d2b7Andreas Gustafsson by "make install".
4efe2e812cf8462ed781bfd79b644eaf17d6d2b7Andreas Gustafsson - The named.conf parser has been completely rewritten.
9b19b39170eaf78ae1baf39acca0be462c2faa4cAndreas Gustafsson It now supports "include" directives in more
276a77c22af98c78403883b16a82646a0d5b29abPaul Vixie places such as inside "view" statements, and it no
413d5565ba2af24f12dc54d6e6807af7f1a39867Andreas Gustafsson longer has any reserved words.
413d5565ba2af24f12dc54d6e6807af7f1a39867Andreas Gustafsson - The "rndc status" command is now implemented.
4efe2e812cf8462ed781bfd79b644eaf17d6d2b7Andreas Gustafsson - rndc can now be configured automatically.
413d5565ba2af24f12dc54d6e6807af7f1a39867Andreas Gustafsson - A BIND 8 compatible stub resolver library is now
4efe2e812cf8462ed781bfd79b644eaf17d6d2b7Andreas Gustafsson - OpenSSL has been removed from the distribution. This
413d5565ba2af24f12dc54d6e6807af7f1a39867Andreas Gustafsson means that to use DNSSEC, OpenSSL must be installed and
413d5565ba2af24f12dc54d6e6807af7f1a39867Andreas Gustafsson the --with-openssl option must be supplied to configure.
672a41b5fef7722803645c1f0ca132972f0f940aAndreas Gustafsson This does not apply to the use of TSIG, which does not
672a41b5fef7722803645c1f0ca132972f0f940aAndreas Gustafsson require OpenSSL.
268755d80313f3c4fab6ffc7e70099310873233eAndreas Gustafsson - The source distribution now builds on Windows.
68dacf121428ad8d1160d19d018e028f676ae47aMark Andrews See win32utils/readme1.txt and win32utils/win32-build.txt
68dacf121428ad8d1160d19d018e028f676ae47aMark Andrews for details.
413d5565ba2af24f12dc54d6e6807af7f1a39867Andreas Gustafsson This distribution also includes a new lightweight stub
276a77c22af98c78403883b16a82646a0d5b29abPaul Vixie resolver library and associated resolver daemon that fully
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley support forward and reverse lookups of both IPv4 and IPv6
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley addresses. This library is considered experimental and
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley is not a complete replacement for the BIND 8 resolver library.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Applications that use the BIND 8 res_* functions to perform
8d0d941054982cff5235a9033040ac35c3f06a50Mark Andrews DNS lookups or dynamic updates still need to be linked against
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley the BIND 8 libraries. For DNS lookups, they can also use the
8d0d941054982cff5235a9033040ac35c3f06a50Mark Andrews new "getrrsetbyname()" API.
469a5f80aebc46e720b073e3a2cceb70709797b6Mark Andrews BIND 9.2 is capable of acting as an authoritative server
469a5f80aebc46e720b073e3a2cceb70709797b6Mark Andrews for DNSSEC secured zones. This functionality is believed to
438e3090de1db43eb55c0495d310162b0538f1e9Mark Andrews be stable and complete except for lacking support for
469a5f80aebc46e720b073e3a2cceb70709797b6Mark Andrews verifications involving wildcard records in secure zones.
614a25ce3c57c34c3020c247b3234c593bfb208cMark Andrews When acting as a caching server, BIND 9.2 can be configured
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley to perform DNSSEC secure resolution on behalf of its clients.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley This part of the DNSSEC implementation is still considered
614a25ce3c57c34c3020c247b3234c593bfb208cMark Andrews experimental. For detailed information about the state of the
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley DNSSEC implementation, see the file doc/misc/dnssec.
unexpected ways. For details, see doc/misc/ipv6.
in the named.conf options statement.
This is due to a bug in "/dev/random" and impacts the
This is due to a bug in "/dev/random" and impacts the
see the "Zone Transfers" section in doc/misc/migration.
NetBSD 3.x and 4.0-beta
C compiler flags. Defaults to include -g and/or -O2
Change the default syslog facility of named/lwresd.
-DNEED_OPTARG=1 (optarg is not declared in <unistd.h>)
By default, installation is into /usr/local, but this can be changed
where configuration files like "named.conf" go by default,
of "run/named.pid". For backwards compatibility with BIND 8,
option, sysconfdir defaults to "$prefix/etc" and localstatedir
defaults to "$prefix/var".
compiler (e.g. the various BSD systems, Linux).
on your system, and some require Perl; see bin/tests/system/README
doc/arm directory.
options of "named" are documented in /bin/named/named.8.
notes in doc/misc/migration. If you are upgrading from
BIND 4, read doc/misc/migration-4to9.