resolved: add option to disable caching (#3592)

System Internals / systemd - Martin Pitt [ubuntu.com] - 24 June 2016 00:54 UTC

In some cases, caching DNS results locally is not desirable, a it makes DNS cache poisoning attacks a tad easier and also allows users on the system to determine whether or not a particular domain got visited by another user. Thus provide a new "Cache" resolved.conf option to disable it.

ceeddf7 resolved: add option to disable caching (#3592)
NEWS | 8 ++++++++
man/resolved.conf.xml | 17 +++++++++++++++++
src/resolve/resolved-dns-transaction.c | 4 ++++
src/resolve/resolved-gperf.gperf | 1 +
src/resolve/resolved-manager.c | 1 +
src/resolve/resolved-manager.h | 1 +
src/resolve/resolved.conf.in | 1 +
7 files changed, 33 insertions(+)

Upstream: github.com

Related systemd Activity

resolved: beef up logic for suppressing "localhost" entry in /etc/hosts
Lennart Poettering

resolved: don't query domain-limited DNS servers for other domains (#3621)
Martin Pitt

resolved: add ECDSA signature support
Lennart Poettering

resolved: add identifiers for dnssec algorithms
Zbigniew Jędrzejewski-Szmek

Recent systemd Activity

hwdb: add Medion Akoya E2228T MD61900 (#18317)
corvusnix

varlink: make 'userdata' pointer inheritance from varlink server to connection optional
Lennart Poettering

udev: use DEFINE_MAIN_FUNCTION in cdrom_id
Dan Streetman

network: add support to RoutingPolicyRule lookup table name
Susant Sahani

resolved: fix use-after-free with queries hitting the cache
Zbigniew Jędrzejewski-Szmek

resolved: add option to disable caching (#3592)

System Internals / systemd - Martin Pitt [ubuntu.com] - 24 June 2016 00:54 UTC

Related systemd Activity

Share

Recent systemd Activity