Archives
/
dnscrypt-server-docker
mirror of https://github.com/dnscrypt/dnscrypt-server-docker
2
0
Fork 0
Code Issues Releases Wiki Activity
405 Commits
3 Branches
1 Tag
32 MiB
master
lucenera-patch-1
new-server
v1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Commit Graph

50 Commits (master)

Author SHA1 Message Date
Frank Denis 5b640ee8d7 Format 1 year ago
Frank Denis 549c8a553f Make val-bogus-ttl match cache_ttl_error 
Fixes #92
 3 years ago
Frank Denis bfcaa89430 Disable udp-connect 3 years ago
mibere eaaabf72f1 Adjust edns-buffer-size (DNS Flag Day 2020) 
DNS Flag Day 2020 recommends a message size of 1232 bytes to avoid IP fragmentation while minimizaing the use of TCP
 4 years ago
Frank Denis 64a841d5ef Downgrade Unbound, disable serve-stale, disable parking_lot for tokio 
Essentially revert anything new and potentially causing #80
 4 years ago
Frank Denis c4e1b96747 Enable serve-stale 4 years ago
Frank Denis 9ba1c98268 Bump cache-min-ttl 
Spotted by @mibere
 4 years ago
Frank Denis 2110fb899d Don't include serve-expired twice 4 years ago
Frank Denis 10a60401fc Disable ratelimit in Unbound 4 years ago
Frank Denis 65f78b41d7 Enable server-expired in Unbound 4 years ago
Frank Denis ba7e420768 Add localhost to undelegated 4 years ago
Frank Denis a952a7e6b8 sync 4 years ago
mibere 122b4d7942 Limit serving of expired responses (#42) 4 years ago
Frank Denis 5e1ce7605b Add some IPv6 reverse addresses 4 years ago
Frank Denis d022ff704c Add more static zones 4 years ago
Frank Denis 2881cc9207 Add more undelegated zones 4 years ago
mibere d0bb7e6ac9 enable aggressive-nsec 
for detailed description and benefits read https://medium.com/nlnetlabs/aggressive-use-of-the-dnssec-validated-cache-in-unbound-1ab3e315d13f
 4 years ago
mibere 9fc2cbe4b1 Local copy of the DNS root zone (hyperlocal) 
Solves #38
 4 years ago
Frank Denis 93cae8ceb5 Bump the encrypted-dns cache up 5 years ago
Frank Denis 4ee1aedaec shfmt 5 years ago
Frank Denis 399f0a89de If unbound-control-setup fails, this is not the end of the world 5 years ago
Frank Denis a3efabd367 Preliminary code to move to the new server 5 years ago
Peter Dave Hello fa7fed55de Format shell scripts with shfmt and test it on CI 5 years ago
Frank Denis 0b439b661d Dropping the cache doesn't work inside a container 5 years ago
Frank Denis f5f3bf4017 Drop the caches before starting unbound 
This reduces memory pressure.
 5 years ago
Frank Denis 8f1b0f30ec Give qname minimisation a new chance 
Fixes #61
 5 years ago
Frank Denis 40595af59d Bump up the reserved memory size 
The default is very low, and makes it difficult to do any other task on the
same host.
 5 years ago
Frank Denis 156345f0a9 Decrease edns-buffer-size to 1220 
Ref: https://sk.tl/2PbhxjbN
 5 years ago
Peter Dave Hello fc47a319d4 Use replace non-standard egrep/fgrep with grep `-E/-F` 5 years ago
Peter Dave Hello 96b9dc9b32 Remoe unnecessary `$` on arithmetic variables in shell script 5 years ago
Peter Dave Hello 3ea7dd925c Quote var/cmd output in shell script to prevent word splitting 5 years ago
Frank Denis 6661b87530 Add bash and find from findutils in order to avoid surprises from busybox 7 years ago
Frank Denis 74fb53de51 Switch to Alpine Linux 7 years ago
Frank Denis 9051c13aaa There is a .host TLD now. Don't tag it as a local zone. 7 years ago
Frank Denis 1814c3c844 Enable serve-expired 7 years ago
Jacob Henner 996ef48786
Removing sed regression which breaks config, fixes #27 8 years ago
Matthew Sojourner Newton fb203db38c Added /opt/unbound/etc/unbound/zones directory and a section in the README discussing how to customize Unbound 8 years ago
Matthew Sojourner Newton 4ee775ee64 Added unbound directive to search for additional configuration files at /opt/unbound/etc/unbound/zones/*.conf 8 years ago
Frank Denis d49b2e745a Sadly disable query minimization for now 
This still occasionally prevents resolution from working properly.

Sample test case: A pop.secureserver.net.
 8 years ago
Frank Denis c72fd91c1d Correctly compute `availableMemory` 8 years ago
Frank Denis 27c3b67e4e Use MemTotal if MemAvailable does not exist 8 years ago
Frank Denis 9c277f829c Enable qname minimisation for increased privacy 9 years ago
Frank Denis 8566959cfc Have unbound listen to port 553 instead of the default port 53 
This prevents issues with docker hosts already having a local resolver
 9 years ago
Frank Denis 850a1e68a6 Create certificates for unbound-control 9 years ago
Frank Denis fcf6cecef7 Enable stats in the unbound config 9 years ago
Frank Denis f292b9ff14 Recommend --net=host 9 years ago
Frank Denis 2a82e45376 + ratelimit 9 years ago
Frank Denis 8ca4558207 Increase the negative cache size 9 years ago
Frank Denis fa9f6254af Have Unbound refuse queries for the provider name 
since certificates are served by dnscrypt-wrapper.
 9 years ago
Frank Denis b3f33d2b6a Initial import 9 years ago