diff options
author | Danilo G. Baio <dbaio@FreeBSD.org> | 2018-03-29 00:49:47 +0000 |
---|---|---|
committer | Danilo G. Baio <dbaio@FreeBSD.org> | 2018-03-29 00:49:47 +0000 |
commit | 7195d6be3264c9e4a5a093bf11565729d333a986 (patch) | |
tree | cdd777c250227e1bb33098ffc0aab7779d5b9bd5 /dns | |
parent | 4805700f238b05dba7b8ba0008a4de9d1870fcec (diff) | |
download | ports-7195d6be3264c9e4a5a093bf11565729d333a986.tar.gz ports-7195d6be3264c9e4a5a093bf11565729d333a986.zip |
Notes
Diffstat (limited to 'dns')
-rw-r--r-- | dns/dnscrypt-proxy2/Makefile | 1 | ||||
-rw-r--r-- | dns/dnscrypt-proxy2/files/dnscrypt-proxy.in | 12 | ||||
-rw-r--r-- | dns/dnscrypt-proxy2/pkg-descr | 2 | ||||
-rw-r--r-- | dns/dnscrypt-proxy2/pkg-message | 20 |
4 files changed, 17 insertions, 18 deletions
diff --git a/dns/dnscrypt-proxy2/Makefile b/dns/dnscrypt-proxy2/Makefile index 50c0bc95c01a..c9227f960323 100644 --- a/dns/dnscrypt-proxy2/Makefile +++ b/dns/dnscrypt-proxy2/Makefile @@ -2,6 +2,7 @@ PORTNAME= dnscrypt-proxy PORTVERSION= 2.0.7 +PORTREVISION= 1 CATEGORIES= dns security PKGNAMESUFFIX= 2 diff --git a/dns/dnscrypt-proxy2/files/dnscrypt-proxy.in b/dns/dnscrypt-proxy2/files/dnscrypt-proxy.in index 7a7f42dd5adf..36d7ed1be351 100644 --- a/dns/dnscrypt-proxy2/files/dnscrypt-proxy.in +++ b/dns/dnscrypt-proxy2/files/dnscrypt-proxy.in @@ -6,12 +6,16 @@ # REQUIRE: cleanvar SERVERS # BEFORE: dnsmasq local_unbound unbound named # -# These are some lines to configure dnscrypt-proxy on /etc/rc.conf: +# Options to configure dnscrypt-proxy via /etc/rc.conf: # -# dnscrypt_proxy_enable (bool): Enable service on boot. Default: NO -# dnscrypt_proxy_conf (str): Config file to use. Default: %%PREFIX%%/etc/dnscrypt-proxy.toml -# dnscrypt_proxy_uid (str): Set to "_dnscrypt-proxy" by default. +# dnscrypt_proxy_enable (bool) Enable service on boot +# Default: NO # +# dnscrypt_proxy_conf (str) Config file to use +# Default: %%PREFIX%%/etc/dnscrypt-proxy.toml +# +# dnscrypt_proxy_uid (str) User to run dnscrypt_proxy as +# Default: _dnscrypt-proxy . /etc/rc.subr diff --git a/dns/dnscrypt-proxy2/pkg-descr b/dns/dnscrypt-proxy2/pkg-descr index 67f163267560..2a9763073542 100644 --- a/dns/dnscrypt-proxy2/pkg-descr +++ b/dns/dnscrypt-proxy2/pkg-descr @@ -1,4 +1,4 @@ -A flexible DNS proxy, with support for modern encrypted DNS protocols such as +A flexible DNS proxy with support for modern encrypted DNS protocols such as DNSCrypt v2 and DNS-over-HTTP/2. WWW: https://github.com/jedisct1/dnscrypt-proxy diff --git a/dns/dnscrypt-proxy2/pkg-message b/dns/dnscrypt-proxy2/pkg-message index 100965fbac53..4be749c49cf6 100644 --- a/dns/dnscrypt-proxy2/pkg-message +++ b/dns/dnscrypt-proxy2/pkg-message @@ -1,16 +1,14 @@ ===================================================================== -Version 2 of dnscrypt-proxy is written in Go and in FreeBSD it's -not capable to drop root privileges after binding a low port (53), -Go issue [1][2]. +Version 2 of dnscrypt-proxy is written in Go and therefore isn't capable +of dropping privileges after binding to a low port on FreeBSD. -For default dnscrypt-proxy2 is listening in port 5353 using username -_dnscrypt-proxy. +By default, the dnscrypt-proxy2 port will listen on (tcp/udp) port 5353 +as the _dnscrypt-proxy user. -You can change your rc.conf/config to use port 53 and root but it's -not recommended. +It's possible to change back to port 53, but not recommended. -It's needed some tweaks to use dnscrypt-proxy2 on port 5353 on your -machine, some examples below to redirect localhost port 53 to 5353: +Below are a few examples on how to redirect local connections from port +5353 to 53. [ipfw] @@ -34,13 +32,9 @@ machine, some examples below to redirect localhost port 53 to 5353: server: interface: 127.0.0.1 do-not-query-localhost: no - hide-identity: yes - hide-version: yes forward-zone: name: "." forward-addr: 127.0.0.1@5353 -[1] - https://github.com/jedisct1/dnscrypt-proxy/issues/199 -[2] - https://github.com/golang/go/issues/13838 ===================================================================== |