Archives
/
dnscrypt-server-docker
mirror of https://github.com/dnscrypt/dnscrypt-server-docker
2
0
Fork 0
Code Issues Releases Wiki Activity
405 Commits
3 Branches
1 Tag
32 MiB
master
lucenera-patch-1
new-server
v1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Commit Graph

405 Commits (master)
 

Author SHA1 Message Date
Frank Denis cc55bb3c5d EDS update 3 years ago
Frank Denis c1f81811e0 Unbound 1.13.1 3 years ago
Frank Denis 549c8a553f Make val-bogus-ttl match cache_ttl_error 
Fixes #92
 3 years ago
Frank Denis 20f8abc760
Kubernetes example: Prometheus option is -M, not -P 
Fixes #98
 3 years ago
Frank Denis a1016974e0 anchore: s/image-reference/image/ 3 years ago
Frank Denis bfcaa89430 Disable udp-connect 3 years ago
Frank Denis cbc66bd7f1 Switch anchore branch to main 3 years ago
Frank Denis 27c8ab16da Switch to Ubuntu 20.10 3 years ago
Frank Denis bfd1f5bd83 Update Unbound and EDS 3 years ago
Frank Denis d6375445e4
Merge pull request #91 from mibere/master 
Version of Unbound & encrypted-dns adapted
 4 years ago
mibere b99927c24f
Version of Unbound & encrypted-dns adapted 4 years ago
Frank Denis ecd14ddcc6 Merge branch 'master' of github.com:DNSCrypt/dnscrypt-server-docker into master 
* 'master' of github.com:DNSCrypt/dnscrypt-server-docker:
  Adjust edns-buffer-size (DNS Flag Day 2020)
 4 years ago
Frank Denis 3f947c2923 Unbound 1.12.0rc1 4 years ago
Frank Denis e0c6e3887b
Merge pull request #89 from mibere/master 
Adjust edns-buffer-size (DNS Flag Day 2020)
 4 years ago
mibere eaaabf72f1 Adjust edns-buffer-size (DNS Flag Day 2020) 
DNS Flag Day 2020 recommends a message size of 1232 bytes to avoid IP fragmentation while minimizaing the use of TCP
 4 years ago
Frank Denis 6275545086 Update Unbound to version 1.11.0 4 years ago
Frank Denis a5a2048266 If the container is run in NAT mode, client IP addresses will be messed up 
So, disable my.ip in the Docker image
 4 years ago
Frank Denis facb03f1db Move Gitter chat badge to the left 4 years ago
Frank Denis 849b2695f1 Goodbye Travis, we'll use GitHub Actions instead 4 years ago
Frank Denis 6d067448b3 travis-ci.org -> .com 4 years ago
Frank Denis 147c03281a
Add Anchore analyzer 4 years ago
Frank Denis ebb083c515 Bump EDS 4 years ago
Frank Denis e1c44f263b Update Unbound 4 years ago
woftor 8d0f779bfe
Removed --net=host as default for the docker container (#46) 
Removed --net=host as default for the docker container
It does forward port 443 tcp/udp to the host, but it also had "--net=host" when starting. That defeats the purpose of the port forward.
Removing "--net=host" as it is also in line with the rest of the documentation.
 4 years ago
woftor f6e9f4e9f6
Update watchtower to more up to date version (#45) 
v2tec/watchtower is not maintained anymore (at least past 2 years). Switch to containrrr/watchtower, which is actively developed.
 4 years ago
Frank Denis 7979ac440c install-centos.sh - update paths to match the documentation 
Fixes #85
 4 years ago
Frank Denis 2858a6ea52 Upgrade base layer to the current Ubuntu LTS (20.04) 4 years ago
Frank Denis 9793a25dcb Merge branch 'master' of github.com:DNSCrypt/dnscrypt-server-docker 
* 'master' of github.com:DNSCrypt/dnscrypt-server-docker:
  Eliminate what's superfluous
 4 years ago
Frank Denis c55108d7da Update encrypted-dns-server 4 years ago
lucenera b6079d5d48
Merge pull request #84 from DNSCrypt/lucenera-patch-1 
Eliminate what's superfluous
 4 years ago
lucenera f39cbaa192
Eliminate what's superfluous 
1) I have deleted the "mkdir -p /etc/dnscrypt-server/keys" section in Installation: in fact with "-v /etc/dnscrypt-server/keys:/opt/encrypted-dns/etc/keys" the directory is automatically created on the host.
2) I have eliminated the options -"-ulimit nofile=90000:90000" and "--net=host" from the docker run command in Installation, because the first one was used in old versions of Docker, because they did not tolerate the limit of the number of files open simultaneously, managed by the kernel , in the standard Ubuntu session settings (and others); the second (--net=host) actually exposes the entire host stack to the container and this does not speed up, but exposes to risk and cancels the much more useful option -p 443:443/udp -p 443:443/tcp (see https://docs.docker.com/network/host/).
3) I have deleted in Installation the explanation regarding the "--net=host" option as explained in point 2.
4) In Installation, I have eliminated the section of the "docker start command dnscrypt-server", because, when the container with docker run is deployed, it is also started.
 4 years ago
Frank Denis 64a841d5ef Downgrade Unbound, disable serve-stale, disable parking_lot for tokio 
Essentially revert anything new and potentially causing #80
 4 years ago
Frank Denis db51ca4f0e Bump versions 4 years ago
Frank Denis c4e1b96747 Enable serve-stale 4 years ago
Frank Denis e180996db2 year 4 years ago
Frank Denis 4929d02f15 Update Unbound 4 years ago
Frank Denis 9ba1c98268 Bump cache-min-ttl 
Spotted by @mibere
 4 years ago
Frank Denis 2110fb899d Don't include serve-expired twice 4 years ago
Frank Denis 10a60401fc Disable ratelimit in Unbound 4 years ago
Frank Denis 65f78b41d7 Enable server-expired in Unbound 4 years ago
Frank Denis 70d8e28a56 Remove --enable-event-api in Unbound compilation 
Spotted by @mibere
 4 years ago
Frank Denis ba7e420768 Add localhost to undelegated 4 years ago
Frank Denis 17f004e379 Fix permissions for legacy blacklists 4 years ago
Frank Denis a1f5fe6b64 Typo 4 years ago
Frank Denis a952a7e6b8 sync 4 years ago
Frank Denis 5b725a769c Update Unbound, add some undelegated zones 4 years ago
Frank Denis 1b4500184b Ensure that the blacklist file is readable 4 years ago
Frank Denis fe93f4e8f7 Sync undelegated zones 4 years ago
mibere 122b4d7942 Limit serving of expired responses (#42) 4 years ago
Frank Denis 4a81823fbc png->svg 4 years ago