New DJBDNS-1.05.6

Hello,

I feel happy to announce yet another release of the New DJBDNS. (New wordpress interface looks neat too.)The release 1.05.6 of N-DJBDNS fixes a major security flaw in the DNS resolver, which would allow an attacker to keep a domain name alive in the resolver cache, even after it has been revoked by the DNS server. It is known as a ghost domain attack. This release also includes the Real time Block List DNS tools: rbldns & rbldns-data. Full list of the added features, latest source and RPM packages could be accessed from

  here -> http://pjp.dgplug.org/ndjbdns/

This latest package is also available via Fedora & EPEL stable repositories. I strongly urge you to install the update via

   $ yum install ndjbdns

It has been truly wonderful to work on N-DJBDNS package; Recently a kind user conveyed his remarks:

I just wanted to thank you for N-DJBDNS.  I’ve been using djbdns (as a caching resolver) with a Fedora system since about Fedora 8.  I did have an older Fedora package, but with some of the init rewrites (systemd), having an updated RPM package makes installation quite simple.  Reported success on Fedora 18 of N-DJBDNS – post install, all I had to do was point Network Manager’s resolver to the lo, 127.0.0.1.

I’d like to thank all users for using N-DJBDNS and invite those who haven’t tried it yet. I’d also like to thank Mark for filing bugs and helping me with the updated patches and reviews.

Thank you so much! 🙂

New DJBDNS

Hi,

Today, I present to you New DJBDNS. A brand New release of the DJBDNS.

    See N-DJBDNS

I never thought I’d write this, but it is with extreme pleasure that I invite you to try,

    # yum install ndjbdns
Yes! N-DJBDNS – is an official Fedora package…YAY!!! 🙂

A packaging exercise which began more than three years ago, has finally come to an end. When it was approved, I spent some time reading all the comments that were posted on this review request. The very first one from Ralf Corsepius said


   This package will need a lot of love to let it pass a review.

I knew it was going to be tough, everybody said that. But honestly, I never imagined three years. It feels awesome today! 🙂

Feels awesome, not only because it is over, but also because it’s the new beginning. Now I can focus on further development and renovation. There’s a long list of things yet to be done. For N-DJBDNS to be more useful, concise, independent and maintainable in the long run, in the near future it needs to,

  • Apply existing patches which are not yet included in the current source. This is going to be tricky, because the original patches were not created for the current source tree. It’s going to be a lot of manual work to apply them.
  • Write good user manuals and online documentation for each of the tools. It could be like an E-book, with one chapter dedicated to each tool.
  • To perform rigorous testing of the individual tools on Linux, *BSD platforms.
  • Format the sources for more readability and hacking comfort. This might sound mundane and boring, but in the long run, I think it is just as important as fixing a security bug. I’ve done close to 50/204 files so far. I could definitely use a little help here.
  • Remove redundant source files.

If you think you could help with any of these tasks, please drop me a mail. I would more than appreciate it and would be glad to work with you. There are many individual tasks which are very good for summer projects and assignments.

If you have any comments, suggestions or if you find any bug in the current release, please feel free to write to me or raise an issue on github. I’ll do my best to address such issues.

I hope you find it useful. 🙂

PS: My sincere thanks to Rahul, Satya, Kushal and Rakesh for all your help.