Re: [Dnsmasq-discuss] Cannot look up disa.mil (dnssec related)

2018-10-22 Thread Matthias Andree
Am 22.10.18 um 18:56 schrieb Craig Andrews: > I'm unable to look up *.disa.mil when using dnsmasq - I'm hoping that > we can figure out why that is. Works for me with dnsmasq 2.80 (release) and a local unbound as upstream: Unbound: > $ dig disa.mil @127.0.0.1 +dnssec +short > 156.112.108.76 > A

Re: [Dnsmasq-discuss] CVE-2017-14495 PoC causes high CPU usage and denial of service against dnsmasq v2.79

2018-10-09 Thread Matthias Andree
Am 08.10.18 um 03:58 schrieb Mouath Ibrahim: > Hello, > > I ran the PoC supplied by Google research team found here: https://github.com/ > google/security-research-pocs/blob/master/vulnerabilities/dnsmasq/ > CVE-2017-14495.py > > and noticed immediately that dnsmasq process uses up 100% CPU usage

Re: [Dnsmasq-discuss] CVE-2017-14495 PoC causes high CPU usage and denial of service against dnsmasq v2.79

2018-10-09 Thread Matthias Andree
Am 09.10.18 um 10:45 schrieb Mouath Ibrahim: > > dnsmasq couldn't resolve anything and eventually i had to stop it. cpu > overheats quick. If your CPU "overheats", you have hardware and system design issues, and you need to fix those first independently. First thing to do is make sure your

Re: [Dnsmasq-discuss] libidn2 issues with underscores on FreeBSD?

2017-08-17 Thread Matthias Andree
Am 09.08.2017 um 22:28 schrieb Petr Menšík: > Hi Simon, > > this issue was fixed in libidn2 release of version 2.0.3. You workaround > could be disabled for releases with IDN2_VERSION_NUMBER >= 0x0203. > > Attaching small example patch. > > Cheers, > Petr Hi everybody, FreeBSD's ports of

[Dnsmasq-discuss] libidn2 issues with underscores on FreeBSD?

2017-07-06 Thread Matthias Andree
Simon, with the release of v2.77, I have switched the FreeBSD port from IDN (which was used up to and including 2.76) to IDN2, and have just received a bug report where SRV records that use underscores are no longer recognized, and the reporter states that disabling the IDN2 option reinstates the

Re: [Dnsmasq-discuss] Dnsmasq-2.77 pxelinux.0 question

2017-06-07 Thread Matthias Andree
Am 07.06.2017 um 00:06 schrieb Simon Kelley: > Ugh. Apologies for letting that one through. How annoying. > > I've committed Chris's patch into git. > > I'll leave it a week or two in case anything similar emerges, and then > push another release. Hi Simon, I am offering my apologies for

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.77rc4

2017-05-22 Thread Matthias Andree
Am 21.05.2017 um 23:24 schrieb Simon Kelley: > I think my code has beaten the compiler. > > > opt->source_netmask will remain set to zero on any code path which > doesn't set addrp and inhibit the execution of the memcpy() Wasn't obvious to me, and chances are that clang either didn't check, or

Re: [Dnsmasq-discuss] 2.77rc5

2017-05-22 Thread Matthias Andree
Am 21.05.2017 um 23:51 schrieb Simon Kelley: > Heads up. I just pushed another release candidate. > > http://www.thekelleys.org.uk/dnsmasq/release-candidates/dnsmasq-2.77rc5.tar.gz Thanks. There is a typo in CHANGELOG which could be fixed for the release without pushing another release candidate

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.77rc4

2017-05-21 Thread Matthias Andree
Am 20.05.2017 um 22:50 schrieb Simon Kelley: > I've just mase the fourth, and probably final, release candidate for > dnsmasq-27. Please download, compile and run, and report any problems > ASAP. If all looks OK, 2.77 will happen in the next week. > >

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.77rc4

2017-05-21 Thread Matthias Andree
d carefully review 0003* whether the option_len() macro needs to be changed instead. > option.c:910:23: warning: unused function 'add_rev6' [-Wunused-function] > static struct server *add_rev6(struct in6_addr *addr, int msize) > ^ > > network.c:936:24: warning: unused variable 'l6

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.76

2016-05-21 Thread Matthias Andree
Am 20.05.2016 um 23:03 schrieb Simon Kelley: > Apologies for jumping the gun on you. As a general thing, a quick email > in reply to an rc1 announcement is enough to hold things until an issue > has been addressed. > > I checked those warnings, and they're all false positives. The static >

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.76

2016-05-18 Thread Matthias Andree
Am 18.05.2016 um 17:44 schrieb Simon Kelley: > I've just released dnsmasq 2.76. > > Download from http://thekelleys.org.uk/dnsmasq/dnsmasq-2.76.tar.gz > > It's more than nine months since the last release, so get the new code > quick, there's lots to go at. Hi Simon, that was fast after the

Re: [Dnsmasq-discuss] redundant/resiliant dnsmasq servers?

2016-03-26 Thread Matthias Andree
Am 25.03.2016 um 22:34 schrieb Kurt H Maier: > On Fri, Mar 25, 2016 at 05:00:17PM -0400, Weedy wrote: >> Considering dhcp typically runs on the router in a home, I think hardware >> failure would cause you bigger issues then "oh crap I can't even DNS" > > People use dnsmasq outside of home, as

Re: [Dnsmasq-discuss] redundant/resiliant dnsmasq servers?

2016-03-25 Thread Matthias Andree
Am 24.03.2016 um 20:34 schrieb Rick Thomas: > > My home network recently suffered 5 hours of downtime because the dnsmasq > server crashed and took out my DNS and DHCP service. > > Is it possible to run a backup instance of dnsmasq on a different server so > this wouldn't happen again? Would

Re: [Dnsmasq-discuss] hogging RAM

2016-03-14 Thread Matthias Andree
Am 14.03.2016 um 09:23 schrieb c...@lim.nl: > It is crashing periodically, and apparently caused the VPS itself to > crash last night. > > Any thoughts about what might be going on here? > > /usr/sbin/dnsmasq --version > Dnsmasq version 2.62 Try a recent version.

Re: [Dnsmasq-discuss] No caching unless recursion enabled?

2016-01-24 Thread Matthias Andree
Am 24.01.2016 um 23:11 schrieb bob tatus: > The current package installed lists as 2.66-14.el7_1, which I believe is > latest for CentOS 7. > > I'm using this via NetworkManager, that is I've enabled dnsmasq via the > /etc/NetworkManager/NetworkManager.conf file, not sure if this matters > much

Re: [Dnsmasq-discuss] No caching unless recursion enabled?

2016-01-22 Thread Matthias Andree
Am 22.01.2016 um 00:16 schrieb bob tatus: > > Hi there, > > I've been using Dnsmasq for a few days now with no problems, it was > caching well and helping a lot. > > Yesterday I disabled recursive DNS queries on my DNS server (Bind 9) as > this is not required within the environment, since

Re: [Dnsmasq-discuss] Hint needed: neither patched 'dnsmasq 2.75' nor '2.76test4' will compile

2016-01-05 Thread Matthias Andree
Am 05.01.2016 um 02:13 schrieb Matthias Fischer: > Hi, > > sorry, this will be rather long... > > I'm trying to compile 'dnsmasq 2.75' (for use with 'IPFire 2.17 (i586) - > core95') with > all available patches but I'm always runnning into errors. > Michael Tremer gave me the hint to ask here. >

Re: [Dnsmasq-discuss] Hint needed: neither patched 'dnsmasq 2.75' nor '2.76test4' will compile

2016-01-05 Thread Matthias Andree
Am 05.01.2016 um 21:01 schrieb Matthias Fischer: > Hi, > > On 05.01.2016 20:11, Matthias Andree wrote: >>> >Building always stops with the exact same errors, regardless if I use >>> >'2.75' with a total of 41 patches by now, or the original >>> >'2.75

Re: [Dnsmasq-discuss] Enable bogus-priv by default

2015-10-24 Thread Matthias Andree
Am 21.10.2015 um 11:41 schrieb Kevin Darbyshire-Bryant: > Ideally those cheap, low margin home router manufacturers will remember > to put '--bogus-priv' in their configs. The ideal fix is getting rid of junk by making it unattractive to sell cheapo gadgets without long-term support. Ways out

Re: [Dnsmasq-discuss] Mirror the git repository to github.com

2015-05-11 Thread Matthias Andree
Am 09.05.2015 um 22:38 schrieb Karl-Philipp Richter: Hi, Mirroring the git repository git://thekelleys.org.uk/dnsmasq.git to github.com would facilitate contributions by providing the pull request feature. How about Gitlab.com? ___ Dnsmasq-discuss

[Dnsmasq-discuss] release-candidates dist-files re-rolled?

2015-04-07 Thread Matthias Andree
Hi Simon, I figured that in http://www.thekelleys.org.uk/dnsmasq/release-candidates/, the dist-files all got re-rolled, and the signatures no longer match. For 2.73rc3, apparently only the po and VERSION files seem to be changed, but this recently got us a BROKEN= mark for the FreeBSD port

Re: [Dnsmasq-discuss] AAAA requests: long delay or SERVFAIL

2014-12-23 Thread Matthias Andree
Am 23.12.2014 um 22:00 schrieb Simon Kelley: Try local=/virt/ the extended domain= syntax is broken in some recent dnsmasq releases. And the inotify stuff apparently broke builds on non-Linux systems (in 2.73test2). FreeBSD doesn't have that (nor sys/inotify.h), you need to move the

Re: [Dnsmasq-discuss] What s the dnsmasq/DHCP way to give a host a fixed IP?

2014-12-17 Thread Matthias Andree
Am 17.12.2014 um 09:38 schrieb Helmut Hullen: Hallo, Matthias, Du meintest am 17.12.14: I don't know one, but it should be in the interface address ranges that dnsmasq is responsible for. Sure? On my machines I define the dhcp-host IP-addresses outside the dhcp- range, and that works

Re: [Dnsmasq-discuss] What s the dnsmasq/DHCP way to give a host a fixed IP?

2014-12-16 Thread Matthias Andree
Am 16.12.2014 um 06:54 schrieb 五月: Greetings, I have a setup in which the DHCP range is 192.168.2.128 to 192.168.2.250, and I manually give some devices an IP in range 192.168.2.1 to 192.168.2.127, using the dhcp-host line. So that I can use the u32 traffic classifier to split traffic

Re: [Dnsmasq-discuss] Shellshock.

2014-09-27 Thread Matthias Andree
Am 27.09.2014 um 12:01 schrieb Roy Marples: On Friday 26 Sep 2014 21:14:20 Simon Kelley wrote: This is just a heads-up that if you're using the --dhcp-script option in dnsmasq, and the script you're calling is being interpreted by bash, then you're affected by the shellshock bug. The bug

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-07 Thread Matthias Andree
Am 07.02.2014 09:24, schrieb Simon Kelley: On 07/02/14 08:21, Jan-Piet Mens wrote: Answering my previous question, this behaviour is specified in RFC 6840 para 5.7. Code changes to implement it are in git now. Have they been comitted? ;-) No visible change here ... Ooops. Try now.

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-07 Thread Matthias Andree
Am 07.02.2014 09:24, schrieb Simon Kelley: On 07/02/14 08:21, Jan-Piet Mens wrote: Answering my previous question, this behaviour is specified in RFC 6840 para 5.7. Code changes to implement it are in git now. Have they been comitted? ;-) No visible change here ... Ooops. Try now.

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-07 Thread Matthias Andree
Am 07.02.2014 09:45, schrieb Matthias Andree: Am 07.02.2014 09:24, schrieb Simon Kelley: On 07/02/14 08:21, Jan-Piet Mens wrote: Answering my previous question, this behaviour is specified in RFC 6840 para 5.7. Code changes to implement it are in git now. Have they been comitted

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-05 Thread Matthias Andree
Am 05.02.2014 09:46, schrieb Simon Kelley: The second answer comes from the cache, and the D0 bit is not set in the query, so the answer doesn't have the AD flag or RRSIG, if you add +dnssec to the dig command you should see both in replies from the cache, Thank you. You are right, that part

Re: [Dnsmasq-discuss] Testers wanted: DNSSEC.

2014-02-04 Thread Matthias Andree
Am 04.02.2014 16:29, schrieb Simon Kelley: DNSSEC in dnsmasq is a long story. There have been requests for the feature for at least five years, and work was started in earnest two years ago, when Giovanni Bajo got much of the way on validation, and I made the necessary changes to the cache

Re: [Dnsmasq-discuss] ARP ignores DHCP ACKs !

2013-12-24 Thread Matthias Andree
Am 24.12.2013 13:35, schrieb Nikita N.: Hi :) Im having a strange issue here with DHCP/ARP I cant solve.. DHCP works good, it receives a REQ from client MAC asking the preferred ip, e.g. 192.168.0.10, and DHCP answers correctly ACK.. But after that, my client keeps asking the following ARP

Re: [Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket

2013-12-12 Thread Matthias Andree
Am 09.12.2013 17:58, schrieb Simon Kelley: OK, using this, I've implemented dynamic interface-address discovery for *BSD. Available now in git and as 2.69test1. This is very useful as it stands, since it makes the dynamic DHCPv6 address-range facility using the constructor: keyword work on

Re: [Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket

2013-12-05 Thread Matthias Andree
Am 05.12.2013 12:48, schrieb Simon Kelley: That's excellent. Thank you. We're too late in the 2.68 cycle for this, but it's first think on my list for 2.69. OK. Google suggests that it should work on any *BSD system, including macOS? FreeBSD-specific features might comprose the

[Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket (was: 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle)

2013-12-04 Thread Matthias Andree
Am 03.12.2013 12:11, schrieb Simon Kelley: The standard fix is to use --bind-dynamic, which can rely on the existence of the extended API. Unfortunately that doesn't work on FreeBSD because it also relies on a a method of getting asynchronous events when interfaces/address come and go. Does

Re: [Dnsmasq-discuss] FreeBSD complement to Linux's netlink: route(4) socket

2013-12-04 Thread Matthias Andree
In one, compile the program, f. i.: cc -O -Wall -o try-rtsock try-rtsock.c That cc command would require -std=c99 on older FreeBSD versions where cc is gcc (which defaults to C90+GNU). Sorry 'bout that, and sorry about the other mistakes (selects() should be read as select(), and the

Re: [Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-12-03 Thread Matthias Andree
Am 03.12.2013 12:11, schrieb Simon Kelley: Could you double-check iface_allowed_v6() and the network enumeration code that calls it, and the code in network.c:703 that calls bind()? Either needs to zero out the scope_id for non-link-local i'faces. That looks like a very good diagnosis:

Re: [Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-12-02 Thread Matthias Andree
Am 02.12.2013 13:01, schrieb Simon Kelley: On 01/12/13 01:59, Matthias Andree wrote: Greetings, testing 2.68rc4, I have found three issues, on FreeBSD 9.2 amd64: 1. the Makefiles might not thoroughly list all dependencies required to build the dnsmasq executable; I found my build miss

Re: [Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-12-02 Thread Matthias Andree
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Am 02.12.2013 22:13, schrieb Matthias Andree: The latter, and I suspect that it might have been any other cache.o file. ... .o file than cache.o. Not quite clear what's causing it, a cursory glance over Makefile lets it look innocent to my eye

[Dnsmasq-discuss] 2.68rc4: bind-interfaces, FreeBSD, IPv6 2001:... addr fails and loses error code, parallel build brittle

2013-11-30 Thread Matthias Andree
Greetings, testing 2.68rc4, I have found three issues, on FreeBSD 9.2 amd64: 1. the Makefiles might not thoroughly list all dependencies required to build the dnsmasq executable; I found my build miss cache.o when linking (compiling with make -j + high number), re-running make immediately after

Re: [Dnsmasq-discuss] Segfault problem with --conntrack option

2013-04-21 Thread Matthias Andree
Am 21.04.2013 18:34, schrieb Giacomo Tazzari: Hello! I encountered a bug that makes dnsmasq segfaults when the --conntrack option is enabled. I am not entirely sure how to reproduce it: on my router (an Ubuntu server) it seems to occur sometimes when a remote DNS responds with ServFail to

Re: [Dnsmasq-discuss] DHCPv6

2013-04-11 Thread Matthias Andree
Am 10.04.2013 12:20, schrieb Simon Kelley: ... and the lesson here, is don't write an unsigned integer to a text file and then parse is back in using atoi(). D'oh! atoi does not do error checking (and is documented that way), unlike strto(u)l, so arguably every use of atoi() is a bug in

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-11 Thread Matthias Andree
Am 11.09.2012 08:27, schrieb microcai: 2012/9/10 Simon Kelley si...@thekelleys.org.uk: On 09/09/12 06:57, Cristian Rodríguez wrote: El dom 09 sep 2012 02:03:11 CLST, Shantanu Gadgil escribió: If this is done, won't the autotools chain will be a prerequisite for dnsmasq to be built. Maybe OK

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-10 Thread Matthias Andree
Am 10.09.2012 11:27, schrieb Simon Kelley: On 09/09/12 06:57, Cristian Rodríguez wrote: El dom 09 sep 2012 02:03:11 CLST, Shantanu Gadgil escribió: If this is done, won't the autotools chain will be a prerequisite for dnsmasq to be built. Maybe OK for Linux OSes ... not necessary for other

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-10 Thread Matthias Andree
Am 08.09.2012 23:16, schrieb Cristian Rodríguez: --- Makefile | 134 - Makefile.am | 16 +++ configure.ac | 113 src/bpf.c |4 ++ src/cache.c |

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-10 Thread Matthias Andree
Am 09.09.2012 18:42, schrieb Jan Seiffert: Shantanu Gadgil schrieb: I would respectfully ask you to re-evaluate the what most people use statement. The simplicity of DNSMasq is what makes it so popular. I would say yes to the simplicity. But i would not search it in the build. I have

Re: [Dnsmasq-discuss] [PATCH] Add support for autotools

2012-09-10 Thread Matthias Andree
Am 10.09.2012 04:05, schrieb Cristian Rodríguez: El 09/09/12 22:10, richardvo...@gmail.com escribió: Completely aside from arguments over the merits of autotools, this patch is not production-ready. It makes unrelated changes. Removal of the copyright notice is certainly not necessary for

Re: [Dnsmasq-discuss] FreeBSD port of release candidate (was: Announce: dnsmasq-2.63rc1)

2012-08-07 Thread Matthias Andree
Am 29.07.2012 21:37, schrieb Simon Kelley: I'm starting the release process for dnsmasq-2.63 with a first release candidate. There's a reasonably hard deadline on making the final 2.63 release of 23rd August, to catch the feature-freeze on the next Ubuntu release. Greetings, [...] FreeBSD

Re: [Dnsmasq-discuss] Patch: Add --ping-timeout option

2012-05-16 Thread Matthias Andree
What is the purpose of casting stuff to float type explicitly (see quoted part below)? difftime() returns double, so the comparison arguments will be type-promoted to double anyways, no matter if you provide float, or integer. (This applies equally to the original code, not just the new code.)

Re: [Dnsmasq-discuss] Patch: Add --ping-timeout option

2012-05-16 Thread Matthias Andree
Am 16.05.2012 22:02, schrieb aop...@bennett-electric.com: What is the purpose of casting stuff to float type explicitly (see quoted part below)? difftime() returns double, so the comparison arguments will be type-promoted to double anyways, no matter if you provide float, or integer. (This

Re: [Dnsmasq-discuss] strange list server bounces

2012-05-08 Thread Matthias Andree
Am 08.05.2012 17:15, schrieb starli...@binnacle.cx: Hello, A problem of some sort exists with the list server configuration. All messages submitted from here bounce when relayed by a mature 'sendmail' configuration. Only way to submit messages is manually using 'nc' directly to one of

Re: [Dnsmasq-discuss] Error returning query result from FreeBSD jail

2012-04-15 Thread Matthias Andree
Am 11.04.2012 21:13, schrieb Simon Kelley: On 11/04/12 19:49, Jan Seiffert wrote: David Nelson schrieb: Hi, I have been trying to get dnsmasq 2.60.1 working on my FreeNAS server within a FreeBSD 8.2 jail without any luck. Dnsmasq is able to receive requests, resolve them either by the local

Re: [Dnsmasq-discuss] 2.60rc4 bug

2012-02-29 Thread Matthias Andree
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Am 29.02.2012 22:56, schrieb Preston Crow: Yup. RC4 is good with the ebuild. I would be surprised if the same issue didn't hit everyone building from source on Linux. I was just working on RC2 when I received this email, so good timing. I'd

Re: [Dnsmasq-discuss] 2.60rc4 bug

2012-02-29 Thread Matthias Andree
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Am 01.03.2012 00:29, schrieb Matthias Andree: Am 29.02.2012 22:56, schrieb Preston Crow: Yup. RC4 is good with the ebuild. I would be surprised if the same issue didn't hit everyone building from source on Linux. I was just working on RC2 when

Re: [Dnsmasq-discuss] Block PTR queries for local IPs being sent upstream

2011-12-12 Thread Matthias Andree
Am 11.12.2011 20:00, schrieb Ed W: Hi, I have setup my DHCP to allocate to 192.168.111.0/24. However, I notice queries from my ipad for various PTR records for this range getting forwarded to my upstream DNS, eg: Dec 11 18:25:55 localhost daemon.info dnsmasq[32485]: query[PTR]

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.59

2011-10-19 Thread Matthias Andree
Am 18.10.2011 23:08, schrieb Simon Kelley: This is a strictly bugfix release that fixes two problems with binding to IPv6 link-local addresses. One of these is a regression in dnsmasq 2.58 and the other stems from a behaviour change in bridge interfaces in recent Linux kernels. Both bugs are

Re: [Dnsmasq-discuss] DNSmasq forwarding to DNS doesn't works

2011-08-26 Thread Matthias Andree
Am 26.08.2011 10:44, schrieb Jérémie SYLVAND: Hello, We are trying to move from dhcpd + bind to dnsmasq for our small company. On the test server, the dhcp provided by dnsmasq works properly, as the internal dns who works better than we want : it's possible to ping the machine's name given

Re: [Dnsmasq-discuss] DNSmasq forwarding to DNS doesn't works

2011-08-26 Thread Matthias Andree
Am 26.08.2011 17:15, schrieb Jérémie SYLVAND: Hello Thank you for your answers. I have tried what you told me, in different thing : using resolv.conf with only 127.0.0.1 with 127.0.0.1 and one of my ISP nameserver Not using resolv.conf by the line no-resolve in the dnsmasq.conf : with

Re: [Dnsmasq-discuss] URL redirection

2011-07-03 Thread Matthias Andree
the same considerations apply. -- Matthias Andree

Re: [Dnsmasq-discuss] [suggestion] tiny embedded web server

2011-06-29 Thread Matthias Andree
Am 29.06.2011 09:18, schrieb Shantanu Gadgil: quote - Boa/thttpd - Both small, but unmaintained for a while? - Monkeyd - very lightweight and pretty functional. Maintained. Appears to be the modern ultra-micro webserver of choice? - nginx - Who would have thought it was actually so

Re: [Dnsmasq-discuss] dnsmasq.conf and URL forwarding - CORRECTION

2011-06-22 Thread Matthias Andree
Am 22.06.2011 14:29, schrieb Brian Talbot: Sorry...the previous message was incorrect. I meant to write: Using /etc/dnsmasq.conf with address=/#/192.168.1.1 forwards all URLs to 192.168.1.1. I am wondering if it is possible to be more specific. For example:

Re: [Dnsmasq-discuss] [suggestion] tiny embedded web server

2011-05-26 Thread Matthias Andree
Am 25.05.2011 17:11, schrieb Ed W: I can think of busybox's server. Probably there are some trivial perl scripts (but I would want to hear they weren't exploitable...). Any other ideas for a trivial lightweight http server? Minimal logging, 301 redirects and static file serving being the

Re: [Dnsmasq-discuss] DNS Resolve issue

2011-03-30 Thread Matthias Andree
Am 30.03.2011 12:05, schrieb Alex Theochari: Hi, I am having some issues with DNSMASQ and can't seem to be able to find the solution. I have installed the software on a synology disk station and inserted the domain as anything.com I am now able to receive emails from anything.com but

Re: [Dnsmasq-discuss] TFTP Timeout annoyances

2011-03-23 Thread Matthias Andree
Am 23.03.2011 21:45, schrieb Michael P. McDonnell: Alright my setup: Two VMs - Same network. VM1) Dnsmasq version 2.57 Copyright (c) 2000-2011 Simon Kelley Compile time options IPv6 GNU-getopt no-DBus no-I18N DHCP TFTP no-IDN ##Config no-resolv no-poll no-hosts

Re: [Dnsmasq-discuss] logging dns queries

2011-03-18 Thread Matthias Andree
that Simon's documentation is complete, in other words, all features are documented in the manual page. -- Matthias Andree

Re: [Dnsmasq-discuss] how to set NS for a zone?

2011-03-04 Thread Matthias Andree
Am 04.03.2011 01:01, schrieb Carlos Carvalho: I've put dnsmasq as the authoritative server for a zone. All seems to be working fine, except that I didn't find how to answer NS queries. Is there a way? In principle this should be defined by the parent zone but it's strange that the

Re: [Dnsmasq-discuss] how to set NS for a zone?

2011-03-04 Thread Matthias Andree
is not The sections that state it provides DNS to a LAN isn't talking much about DNS functionality. Hope that helps. -- Matthias Andree

[Dnsmasq-discuss] pending works before 2.57 (was: config error after 2.56 upgrade)

2011-02-16 Thread Matthias Andree
IDN but not I18N. Count me in :) #3 I'm also wondering if the stuff above shouldn't rather be !ishexnumber() for locale compatibility. Best regards -- Matthias Andree

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.56

2011-02-16 Thread Matthias Andree
. -- Matthias Andree

[Dnsmasq-discuss] FreeBSD vs. bind-interfaces and except-interface

2011-02-16 Thread Matthias Andree
to lsof. Is this a known issue on FreeBSD? What means are there to resolve this so that users don't fall into this trap? -- Matthias Andree

Re: [Dnsmasq-discuss] FreeBSD vs. bind-interfaces and except-interface

2011-02-16 Thread Matthias Andree
and find out later. There's a couple of reasons this could fail, but the reason is _not_ that FreeBSD 8.2 couldn't bind INADDR_ANY with named bound to 127.0.0.1:53 TCPv4 and ::1/53 TCPv6. -- Matthias Andree

Re: [Dnsmasq-discuss] .0 added to tftp filename

2010-07-28 Thread Matthias Andree
pxelinux.0. -- Matthias Andree

Re: [Dnsmasq-discuss] 2.53rc2

2010-05-26 Thread Matthias Andree
=network dnsmasq -d [other dnsmasq options] Other systems might provide truss or ktrace/kdump. -- Matthias Andree

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.53 release candidate 1

2010-05-22 Thread Matthias Andree
Simon Kelley: Allow --log-facility=- to force all logging to stderr. Suggestion from Clemens Fischer. Clemens Fischer: I have all daemons running supervised by runsv, where the logs go to stderr and the superviser process manages a pipe between the daemon and the

Re: [Dnsmasq-discuss] Two questions about the cache and how dnsmasq forwards queries

2010-02-18 Thread Matthias Andree
games necessary. -- Matthias Andree

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.51rc1

2009-10-01 Thread Matthias Andree
translation is - with 17/313 messages - so incomplete it's not worth shipping. I don't have sufficient time to do it on short notice though, so I'll not try. Best regards Matthias -- Matthias Andree

[Dnsmasq-discuss] dnsmasq 2.51 rc1 for FreeBSD (was: Announce: dnsmasq-2.51rc1)

2009-10-01 Thread Matthias Andree
Cc: me), and general feedback on the software to Simon or the list. Thank you. Best regards -- Matthias Andree

Re: [Dnsmasq-discuss] Announce: dnsmasq-2.51rc1

2009-10-01 Thread Matthias Andree
with the .o files which also end up in src/, and then I wonder what the bld/ directory is for if it's static. I would've guessed from the name that bld/ is build/ and hence where the outputs are supposed to end up, but apparently not so. :) Cheers -- Matthias Andree

Re: [Dnsmasq-discuss] don't empty cache

2009-06-23 Thread Matthias Andree
for the original posting/pain anyways. Running firewalls on outdated kernels is as dangerous as it can get - some code injection might disable your firewall and then expose your whole LAN. -- Matthias Andree

Re: [Dnsmasq-discuss] don't empty cache

2009-06-23 Thread Matthias Andree
with besides the point that the original poster was making, and that deserves a comment. -- Matthias Andree

Re: [Dnsmasq-discuss] don't empty cache

2009-06-22 Thread Matthias Andree
Markus Bergholz schrieb: dnsmasq emty his cache after restart, how to prevent it? greetz I guess you need to write code and documentation to save and reload the cache across restarts, and contribute both.

[Dnsmasq-discuss] Mailing list digest format abuse (was: Re: Dnsmasq-discuss Digest, Vol 49, Issue 9)

2009-06-17 Thread Matthias Andree
49, Issue 9 ** ___ Dnsmasq-discuss mailing list Dnsmasq-discuss@lists.thekelleys.org.uk http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss -- Matthias Andree

Re: [Dnsmasq-discuss] dnsmasq-2.46 release candidate.

2008-10-21 Thread Matthias Andree
Simon Kelley si...@thekelleys.org.uk writes: Update example config dhcp option 47, the previous suggestion generated and illegal, zero-length, option. Thanks to Matthias Andree for finding this. I haven't looked at your release candidate (code docs) yet

Re: [Dnsmasq-discuss] dnsmasq-2.46 release candidate.

2008-10-21 Thread Matthias Andree
On Tue, 21 Oct 2008, Simon Kelley wrote: Matthias Andree wrote: Simon Kelley si...@thekelleys.org.uk writes: Update example config dhcp option 47, the previous suggestion generated and illegal, zero-length, option. Thanks to Matthias Andree for finding

Re: [Dnsmasq-discuss] dnsmasq.conf 2.41 violates RFC-2132 on dhcp-option=47

2008-09-04 Thread Matthias Andree
that line from the example file, or maybe change to to show how to set the scope to example.com or similar. Your suggestion seems sensible to me. Workaround: leave dhcp-option=47 commented out... -- Matthias Andree

Re: [Dnsmasq-discuss] dnsmasq.conf 2.41 violates RFC-2132 ondhcp-option=47

2008-09-04 Thread Matthias Andree
causing the problem for me. Check /var/log/messages and see why it refuses the address, or check with tshark/tcpdump what happens on the wire. -- Matthias Andree

Re: [Dnsmasq-discuss] dnsmasq runs as root if setcap() fails

2008-06-20 Thread Matthias Andree
privilege-dropping (for instance setuid(uid-of-dnsmasq-user)) for situations where capability-dropping doesn't work, even if the latter has been enabled at compile time. -- Matthias Andree

Re: [Dnsmasq-discuss] Linux clients doesn't update the DNS

2008-04-22 Thread Matthias Andree
client? There are several dhcp client software options (dhcpcd, dhclient, to name two), and each of them is somewhat configurable, too. -- Matthias Andree

Re: [Dnsmasq-discuss] dnsmasq isn't happy when log file reaches 2GB?

2008-04-04 Thread Matthias Andree
, there is likely something wrong or misconfigured anyway. There's always ulimit (some shells call it limit) where you can configure maximum file sizes according to your specific desires. -- Matthias Andree

Re: [Dnsmasq-discuss] dnsmasq isn't happy when log file reaches 2GB?

2008-04-04 Thread Matthias Andree
LFS_CFLAGS, LFS_LIBS, LFS_LDFLAGS. This works at least on Solaris and Linux. -- Matthias Andree

Re: [Dnsmasq-discuss] issues with WPAD/option 252 (was: Dnsmasq-discuss Digest, Vol 34, Issue 6)

2008-03-18 Thread Matthias Andree
it politely) in common WPAD clients (might that be Internet Explorer?) - similar considerations (stuff blank or line feed) also hold if you're using ISC dhcpd. -- Matthias Andree

Re: [Dnsmasq-discuss] dnsmasq 2.41 release candidate.

2008-02-02 Thread Matthias Andree
, I stopped there and didn't try just adding GNU's for the sake of experiment or look around on the system - just in case you're interested to know. Best regards, and keep up the good work. -- Matthias Andree

Re: [Dnsmasq-discuss] DHCP Issue

2007-07-22 Thread Matthias Andree
other fall into the same pit... -- Matthias Andree

Re: [Dnsmasq-discuss] A test release?

2007-03-31 Thread Matthias Andree
of the problem - I chose to go for the latter. -- Matthias Andree

Re: [Dnsmasq-discuss] Different IP Address range for OpenVPN clients?

2006-08-30 Thread Matthias Andree
there dynamically (well, unless you run out of IPs, they can be made static just like they are in DHCP). Check the OpenVPN HOWTO for the server (or perhaps server-bridge in your setup if you're using TAP) and the ifconfig-pool-persist options. -- Matthias Andree

Re: [Dnsmasq-discuss] Nonroot problem

2006-08-11 Thread Matthias Andree
behavior or a bug? What am I doing wrong? It is even documented behavior and certainly not a bug. -- Matthias Andree