Age | Commit message (Expand) | Author |
2016-02-10 | tree-wide: remove Emacs lines from all files | Daniel Mack |
2016-01-31 | resolved: make dnssec_nsec_test_enclosed() static | Michael Olbrich |
2016-01-25 | resolved: log each time we increase the DNSSEC verdict counters | Lennart Poettering |
2016-01-17 | resolved: rename dnssec_verify_dnskey() → dnssec_verify_dnskey_by_ds() | Lennart Poettering |
2016-01-13 | resolved: implement the full NSEC and NSEC3 postive wildcard proofs | Lennart Poettering |
2016-01-11 | resolved: properly look for NSEC/NSEC3 RRs when getting a positive wildcard r... | Lennart Poettering |
2016-01-05 | resolved,networkd: add a per-interface DNSSEC setting | Lennart Poettering |
2016-01-05 | resolved: rename "downgrade-ok" mode to "allow-downgrade" | Lennart Poettering |
2016-01-05 | resolved: when caching negative responses, honour NSEC/NSEC3 TTLs | Lennart Poettering |
2016-01-04 | resolved: partially implement RFC5011 Trust Anchor support | Lennart Poettering |
2016-01-03 | resolved: print a log message when we ignore an NSEC3 RR with an excessive am... | Lennart Poettering |
2016-01-03 | resolved: dnssec - factor out hashed domain generation | Tom Gundersen |
2016-01-03 | resolved: don't conclude NODATA if CNAME exists | Tom Gundersen |
2015-12-26 | resolved: add an automatic downgrade to non-DNSSEC mode | Lennart Poettering |
2015-12-26 | resolved: if we accepted unauthenticated NSEC/NSEC3 RRs, use them for proofs | Lennart Poettering |
2015-12-18 | resolved: add support NSEC3 proofs, as well as proofs for domains that are OK... | Lennart Poettering |
2015-12-14 | resolved: add basic proof of non-existance support for NSEC+NSEC3 | Lennart Poettering |
2015-12-11 | resolved: rework dnssec validation results | Lennart Poettering |
2015-12-10 | resolved: chase DNSKEY/DS RRs when doing look-ups with DNSSEC enabled | Lennart Poettering |
2015-12-03 | resolved: introduce a dnssec_mode setting per scope | Lennart Poettering |
2015-12-03 | resolved: don't accept expired RRSIGs | Lennart Poettering |
2015-12-02 | resolved: add basic DNSSEC support | Lennart Poettering |