mirrors/dnscrypt-proxy
1
0
Fork 0
mirror of https://github.com/DNSCrypt/dnscrypt-proxy.git synced 2025-04-04 21:57:44 +03:00
Code Issues Projects Releases Packages Wiki Activity
2223 commits 5 branches 92 tags 32 MiB
Commit graph

1384 commits

Author SHA1 Message Date
Frank Denis
ed60976dd2 Infer TTL from Date: and Expire: headers 
Unfortunately, Google DNS sets Expire: to the same value as Date:

So we may want to use Cache-Control instead.
 2018-02-04 13:35:40 +01:00
Frank Denis
458da8fa77 DoH: use 0 as a transaction ID 
Reject short TCP queries early by the way
 2018-02-04 12:57:54 +01:00
Frank Denis
2eed62f1e2 Add a setMaxTTL() function 
Will be useful to interprete HTTP cache headers in DoH
 2018-02-04 12:39:33 +01:00
Frank Denis
a4b70fa56d Last released candidate, so people can test cloaking 2018-02-04 12:00:24 +01:00
Frank Denis
9d69811de9 Add limits to HTTP requests 2018-02-04 11:33:04 +01:00
Frank Denis
9ee7e522b1 Proper stamps length check 2018-02-04 11:04:29 +01:00
Frank Denis
cfeb25a4c2 cloak: decrement TTL 2018-02-04 09:36:57 +01:00
Frank Denis
d005a76dc4 Add some comments 2018-02-04 02:29:09 +01:00
Frank Denis
18167c0f47 If we already performed a resolution before, even partial, don't retry 
(at least until the TTL expires)

So, if www.google.com is cloaked, and forcesafesearch returns a A
record but no AAAA, return the cloaked A record for A queries, but
don't return the actual AAAA record for AAAA queries: return a
synthetic empty response instead.
 2018-02-04 02:22:38 +01:00
Frank Denis
5c18c51116 We need to manage the TTL properly, but in the meantime, reduce log verbosity 2018-02-04 02:12:45 +01:00
Frank Denis
1e066e69b3 Import a cloaking example file 2018-02-04 01:57:18 +01:00
Frank Denis
033931a13a Add a new powerful plugin: DNS cloaking 2018-02-04 01:43:37 +01:00
Frank Denis
e62dd27593 Use https for the remote source example 
This can be changed back to http on platforms that don't have a clock
 2018-02-03 22:01:09 +01:00
Frank Denis
93810e60d7 Set the default source refresh delay to 3 days 2018-02-03 18:55:46 +01:00
Frank Denis
588d8dabde rc2 2018-02-03 12:53:43 +01:00
Frank Denis
f513ab21fa Check if the config file exists from the current directory 
Try the executable directory if it fails

Then, go to that config file directory no matter what

Fixes #80
 2018-02-03 10:46:47 +01:00
Frank Denis
67b0d95ea1 Reduce log verbosity when ignore_system_dns = true 
Fixes #81
 2018-02-03 10:25:41 +01:00
Frank Denis
dc070d56a4 Add nofilter to Google 2018-02-02 15:08:33 +01:00
Frank Denis
c5283061cf Properly remove the default port 2018-02-02 15:07:12 +01:00
Frank Denis
e4e351b854 Clear ServerName for -list-all 
Suggested by @glitsj16, thanks!

Fixes #71
 2018-02-02 14:51:14 +01:00
Frank Denis
bf56644a49 Add a -list-all switch; add IPv6 & port number info to the JSON output 2018-02-01 21:48:46 +01:00
Frank Denis
fe2bb3847b Update Travis for the new example file names 2018-02-01 19:01:02 +01:00
Frank Denis
c2fb372112 Rename example files 2018-02-01 18:28:53 +01:00
Frank Denis
13952ffb1a Do not consider the absence a listening sockets an error 
Because systemd.

Fixes #64
 2018-02-01 16:59:48 +01:00
Frank Denis
ac22f8a046 typo 2018-02-01 12:37:13 +01:00
Frank Denis
6efd904b9f 2.0.0 release candidate 2018-02-01 10:26:14 +01:00
Frank Denis
db7ff80800 Nits 2018-02-01 10:25:16 +01:00
Frank Denis
107fc35d2a Support time access restrictions in substrings & glob patterns 
Improve example
 2018-02-01 09:47:37 +01:00
Frank Denis
1a34224c91 Rename time_ranges to schedules 2018-02-01 09:18:56 +01:00
Frank Denis
cb0e2a1759 Indent sections in the example config file 
It should make it more obvious that properties are tied to a section.

Fixes #62
 2018-02-01 09:00:28 +01:00
Frank Denis
9b4eb54c0b Merge branch 'master' of github.com:jedisct1/dnscrypt-proxy 
* 'master' of github.com:jedisct1/dnscrypt-proxy:
  Move the time check function down, make it more readable
  time-based access control: done, for prefixes & suffixes rules
 2018-02-01 08:51:54 +01:00
Frank Denis
b88cfa0716 Typo, and use single quotes everywhere 
Fixes #61
 2018-02-01 08:51:29 +01:00
Frank Denis
aa34dae308 Move the time check function down, make it more readable 2018-02-01 01:05:23 +01:00
Frank Denis
61592776e2 time-based access control: done, for prefixes & suffixes rules 2018-02-01 01:00:48 +01:00
Frank Denis
41a73ccb03 Time access restrictions [WIP] 
Because my daughter spends way too much time on Youtube
Because people have been asking OpenDNS to implement this for the past 10 years
Because existing tools suck
Because I want something flexible, where every rule can be assigned a schedule
 2018-01-31 23:08:38 +01:00
Frank Denis
ba2293149e phew 2018-01-31 22:49:40 +01:00
Frank Denis
d575ec8beb bleh 2018-01-31 22:18:11 +01:00
Frank Denis
fe8ff9dcbb Spaces 2018-01-31 20:07:52 +01:00
Frank Denis
7a8deebaf1 DoH: implement support for multiples cert hashes 2018-01-31 18:16:54 +01:00
Frank Denis
22e63774a1 Fix cert expiration warnings 
Spotted by @CommanderRoot -- thanks!
 2018-01-31 17:11:08 +01:00
Frank Denis
e91ce9eb3d Nits 2018-01-31 15:08:58 +01:00
Frank Denis
d7ec318945 Accept sources without an URL; use v2 format by default for remote sources 2018-01-31 14:24:21 +01:00
Frank Denis
2d291ecad6 Add some comments 2018-01-31 12:17:14 +01:00
Frank Denis
148d900a72 Legacy format: store server descriptions 2018-01-31 09:45:10 +01:00
Frank Denis
f8a6e56026 -list -json now prints the list of available servers as JSON 
Can be useful for GUIs, especially since this includes the description
 2018-01-31 09:42:56 +01:00
Frank Denis
d42ab83184 ServerConfig -> StaticConfig to match the config file 2018-01-31 08:43:49 +01:00
Frank Denis
cdb8faba75 Nits 2018-01-31 08:40:20 +01:00
Frank Denis
f6571af24f Nits 2018-01-31 08:38:22 +01:00
Frank Denis
5e8925523f Split ConfigLoad a bit more 2018-01-31 08:32:44 +01:00
Frank Denis
16fc6b74e9 Split ConfigLoad() 2018-01-31 08:27:59 +01:00