YADIFA
YADIFA /jɑːˈdiːfɑː/ (an acronym for Yet Another DNS Implementation For All[2]) is a lightweight authoritative name server, written in C, with DNSSEC capabilities. Developed by the people behind the .eu top-level domain, YADIFA has been built from scratch to face today's DNS challenges, with no compromises on security, speed and stability, to offer a better and safer Internet experience.
| Original author(s) | Gery Van Emelen, Eric Diaz Fernandez |
|---|---|
| Developer(s) | EURid |
| Initial release | 2012 |
| Stable release | 2.3.9[1]
/ February 11, 2019 |
| Repository | github |
| Operating system | Linux, macOS, FreeBSD, OpenBSD, Solaris |
| Platform | IA-32, x86-64, SPARC, PowerPC |
| Type | DNS server |
| License | BSD license |
| Website | www |
YADIFA has a simple configuration syntax and can handle more queries per second while maintaining one of the lowest memory footprints in the industry.
YADIFA has one of the fastest zone file load times ever recorded on a name server.
Features
- Efficient
- Low memory footprint
- Fast loading of zones
- Very high response rates
- Authoritative name server (master and slave) with full AXFR/IXFR/DNS notify/TSIG support
- Multi master support
- Dynamic updates (DNS update) with full DNSSEC support
- NSID
- DNSSEC compliant
- Full NSEC support
- Full NSEC3 support
- Policies for automatic key generation
- Diary schedules
- Relative schedules
- Ability to choose key algorithm, length
- Ability to set denial parameters (NSEC3 salt, iterations, ...)
- Smart Signing
- Generate NSEC/NSEC3/RRSIG records
- Maintain RRSIG signatures
- Automatic key-roll (Publish, Activate, Deactivate, Remove)
- Supported algorithms
- DSASHA1 NSEC (algorithm 3)
- DSASHA1 NSEC3 (algorithm 6)
- RSASHA1 NSEC (algorithm 5)
- RSASHA1 NSEC3 (algorithm 7)
- RSASHA256 NSEC/NSEC3 (algorithm 8)
- RSASHA512 NSEC/NSEC3 (algorithm 10)
- ECDSAP256SHA256 NSEC/NSEC3 (algorithm 13)
- ECDSAP384SHA384 NSEC/NSEC3 (algorithm 14)
- Runs on many platforms
- Linux
- *BSD (FreeBSD/OpenBSD)
- OsX
- Solaris (x86/SPARC)
gollark: In which I futilely try and get people to actually secure things.
gollark: https://wiki.computercraft.cc/Network_security
gollark: I hope there would be a home for documentation like the network security and GPS host pages I wrote, then, still.
gollark: Oh, just going to be maybe.
gollark: Or, well, shut down.
See also
External links
- EURid Official Website
- WHOIS for .eu domain names
- RFC 2136 Dynamic Updates in the Domain Name System (DNS UPDATE)
- RFC 2845 Secret Key Transaction Authentication for DNS (TSIG)
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.