Archives
/
dnscrypt-server-docker
mirror of https://github.com/dnscrypt/dnscrypt-server-docker
2
0
Fork 0
Code Issues Releases Wiki Activity
338 Commits
3 Branches
1 Tag
32 MiB
master
lucenera-patch-1
new-server
v1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'facb03f1db'
${ noResults }
Commit Graph

338 Commits (facb03f1db48aa6be8c2c970d90744599e10edae)
 

Author SHA1 Message Date
Frank Denis facb03f1db Move Gitter chat badge to the left 4 years ago
Frank Denis 849b2695f1 Goodbye Travis, we'll use GitHub Actions instead 4 years ago
Frank Denis 6d067448b3 travis-ci.org -> .com 4 years ago
Frank Denis 147c03281a
Add Anchore analyzer 4 years ago
Frank Denis ebb083c515 Bump EDS 4 years ago
Frank Denis e1c44f263b Update Unbound 4 years ago
woftor 8d0f779bfe
Removed --net=host as default for the docker container (#46) 
Removed --net=host as default for the docker container
It does forward port 443 tcp/udp to the host, but it also had "--net=host" when starting. That defeats the purpose of the port forward.
Removing "--net=host" as it is also in line with the rest of the documentation.
 4 years ago
woftor f6e9f4e9f6
Update watchtower to more up to date version (#45) 
v2tec/watchtower is not maintained anymore (at least past 2 years). Switch to containrrr/watchtower, which is actively developed.
 4 years ago
Frank Denis 7979ac440c install-centos.sh - update paths to match the documentation 
Fixes #85
 4 years ago
Frank Denis 2858a6ea52 Upgrade base layer to the current Ubuntu LTS (20.04) 4 years ago
Frank Denis 9793a25dcb Merge branch 'master' of github.com:DNSCrypt/dnscrypt-server-docker 
* 'master' of github.com:DNSCrypt/dnscrypt-server-docker:
  Eliminate what's superfluous
 4 years ago
Frank Denis c55108d7da Update encrypted-dns-server 4 years ago
lucenera b6079d5d48
Merge pull request #84 from DNSCrypt/lucenera-patch-1 
Eliminate what's superfluous
 4 years ago
lucenera f39cbaa192
Eliminate what's superfluous 
1) I have deleted the "mkdir -p /etc/dnscrypt-server/keys" section in Installation: in fact with "-v /etc/dnscrypt-server/keys:/opt/encrypted-dns/etc/keys" the directory is automatically created on the host.
2) I have eliminated the options -"-ulimit nofile=90000:90000" and "--net=host" from the docker run command in Installation, because the first one was used in old versions of Docker, because they did not tolerate the limit of the number of files open simultaneously, managed by the kernel , in the standard Ubuntu session settings (and others); the second (--net=host) actually exposes the entire host stack to the container and this does not speed up, but exposes to risk and cancels the much more useful option -p 443:443/udp -p 443:443/tcp (see https://docs.docker.com/network/host/).
3) I have deleted in Installation the explanation regarding the "--net=host" option as explained in point 2.
4) In Installation, I have eliminated the section of the "docker start command dnscrypt-server", because, when the container with docker run is deployed, it is also started.
 4 years ago
Frank Denis 64a841d5ef Downgrade Unbound, disable serve-stale, disable parking_lot for tokio 
Essentially revert anything new and potentially causing #80
 4 years ago
Frank Denis db51ca4f0e Bump versions 4 years ago
Frank Denis c4e1b96747 Enable serve-stale 4 years ago
Frank Denis e180996db2 year 4 years ago
Frank Denis 4929d02f15 Update Unbound 4 years ago
Frank Denis 9ba1c98268 Bump cache-min-ttl 
Spotted by @mibere
 4 years ago
Frank Denis 2110fb899d Don't include serve-expired twice 4 years ago
Frank Denis 10a60401fc Disable ratelimit in Unbound 4 years ago
Frank Denis 65f78b41d7 Enable server-expired in Unbound 4 years ago
Frank Denis 70d8e28a56 Remove --enable-event-api in Unbound compilation 
Spotted by @mibere
 4 years ago
Frank Denis ba7e420768 Add localhost to undelegated 4 years ago
Frank Denis 17f004e379 Fix permissions for legacy blacklists 4 years ago
Frank Denis a1f5fe6b64 Typo 4 years ago
Frank Denis a952a7e6b8 sync 4 years ago
Frank Denis 5b725a769c Update Unbound, add some undelegated zones 4 years ago
Frank Denis 1b4500184b Ensure that the blacklist file is readable 4 years ago
Frank Denis fe93f4e8f7 Sync undelegated zones 4 years ago
mibere 122b4d7942 Limit serving of expired responses (#42) 4 years ago
Frank Denis 4a81823fbc png->svg 4 years ago
Frank Denis 53ec5cdd78 Merge branch 'master' of github.com:jedisct1/dnscrypt-server-docker 4 years ago
Frank Denis b38c2500b9 Add Gitter chat badge 4 years ago
Frank Denis aa0285d893
Merge pull request #41 from mibere/master 
Update README.md
 4 years ago
mibere 04c8c1c5ce Update README.md 
enhancements chapter 'Updating the container'
 4 years ago
Frank Denis 9b7cd92696 Bump min TTL, switch daemon user and group 4 years ago
Frank Denis 33080e9766 Ensure that the keys directory is accessible from _encrypted-dns 4 years ago
Frank Denis a246506150 Copy and use undelegated.txt 4 years ago
Frank Denis 33ac5b4ad6 Import undelegated.txt 4 years ago
Frank Denis 03d780097a Sync encrypted-dns.toml.in and bump EDS version 4 years ago
Frank Denis 5e1ce7605b Add some IPv6 reverse addresses 4 years ago
Frank Denis d022ff704c Add more static zones 4 years ago
Frank Denis 28164a3dfd Documentation: add quotes around IP addresses 
This is not necessary for IPv4 addresses, but it is for IPv6
addresses (to prevent shell expansion).
 4 years ago
Frank Denis 7c0677c8d2 Update unbound to 1.9.6rc1 4 years ago
Frank Denis 2881cc9207 Add more undelegated zones 4 years ago
Frank Denis 743f842309
Merge pull request #40 from mibere/master 
enable aggressive-nsec
 4 years ago
mibere d0bb7e6ac9 enable aggressive-nsec 
for detailed description and benefits read https://medium.com/nlnetlabs/aggressive-use-of-the-dnssec-validated-cache-in-unbound-1ab3e315d13f
 4 years ago
mibere b15b09c12a
Merge pull request #1 from jedisct1/master 
Merge pull request #39 from mibere/master
 4 years ago