From e447fa2d6735b402af0ac66bcf9b495d01ab30e6 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Zolt=C3=A1n=20Felleg?= <zoltan.felleg@userrendszerhaz.hu>
Date: Wed, 2 Jun 2021 15:32:20 +0200
Subject: [PATCH] Updated all nameservers (updated named.conf for the new named
 version).

---
 .../ens.pm/postinstall/install/etc/named.conf  | 18 ++++++++++++------
 .../ins.in/postinstall/install/etc/named.conf  | 18 +++++++++++++-----
 .../pns.in/postinstall/install/etc/named.conf  | 18 +++++++++++++-----
 .../pns.pm/postinstall/install/etc/named.conf  | 18 +++++++++++++-----
 .../svc.in/postinstall/install/etc/named.conf  | 18 +++++++++++++-----
 5 files changed, 64 insertions(+), 26 deletions(-)

diff --git a/sources/ens.pm/postinstall/install/etc/named.conf b/sources/ens.pm/postinstall/install/etc/named.conf
index e16912b..2e3b73d 100644
--- a/sources/ens.pm/postinstall/install/etc/named.conf
+++ b/sources/ens.pm/postinstall/install/etc/named.conf
@@ -7,20 +7,26 @@ options {
 	dump-file		"data/cache_dump.db";
 	statistics-file		"data/named_stats.txt";
 	memstatistics-file	"data/named_mem_stats.txt";
+	secroots-file		"data/named.secroots";
+	recursing-file		"data/named.recursing";
 
-	listen-on	port 53 { any; };
-	listen-on-v6	port 53 { any; };
+	listen-on port 53	{ any; };
+	listen-on-v6 port 53	{ any; };
 
 	allow-query		{ none; };
 	allow-query-cache	{ none; };
 	allow-recursion		{ none; };
 
-	recursion	no;
-
-	dnssec-enable		yes;
-	dnssec-validation	auto;
+	dnssec-validation	yes;
 
 	random-device		"/dev/urandom";
+
+	max-cache-size		64m;
+
+	managed-keys-directory	"/var/named/dynamic";
+	geoip-directory		"/usr/share/GeoIP";
+
+	include			"/etc/crypto-policies/back-ends/bind.config";
 };
 
 logging {
diff --git a/sources/ins.in/postinstall/install/etc/named.conf b/sources/ins.in/postinstall/install/etc/named.conf
index 43f65bf..f188cd3 100644
--- a/sources/ins.in/postinstall/install/etc/named.conf
+++ b/sources/ins.in/postinstall/install/etc/named.conf
@@ -7,18 +7,26 @@ options {
 	dump-file		"data/cache_dump.db";
 	statistics-file		"data/named_stats.txt";
 	memstatistics-file	"data/named_mem_stats.txt";
+	secroots-file		"data/named.secroots";
+	recursing-file		"data/named.recursing";
 
-	listen-on	port 53 { any; };
-	listen-on-v6	port 53 { any; };
+	listen-on port 53	{ any; };
+	listen-on-v6 port 53	{ any; };
 
 	allow-query		{ none; };
 	allow-query-cache	{ none; };
 	allow-recursion		{ none; };
 
-	recursion	no;
+	dnssec-validation	yes;
 
-	dnssec-enable		yes;
-	dnssec-validation	no;
+	random-device		"/dev/urandom";
+
+	max-cache-size		64m;
+
+	managed-keys-directory	"/var/named/dynamic";
+	geoip-directory		"/usr/share/GeoIP";
+
+	include			"/etc/crypto-policies/back-ends/bind.config";
 };
 
 logging {
diff --git a/sources/pns.in/postinstall/install/etc/named.conf b/sources/pns.in/postinstall/install/etc/named.conf
index db7282c..2383522 100644
--- a/sources/pns.in/postinstall/install/etc/named.conf
+++ b/sources/pns.in/postinstall/install/etc/named.conf
@@ -7,18 +7,26 @@ options {
 	dump-file		"data/cache_dump.db";
 	statistics-file		"data/named_stats.txt";
 	memstatistics-file	"data/named_mem_stats.txt";
+	secroots-file		"data/named.secroots";
+	recursing-file		"data/named.recursing";
 
-	listen-on	port 53 { any; };
-	listen-on-v6	port 53 { any; };
+	listen-on port 53	{ any; };
+	listen-on-v6 port 53	{ any; };
 
 	allow-query		{ none; };
 	allow-query-cache	{ none; };
 	allow-recursion		{ none; };
 
-	recursion	no;
+	dnssec-validation	yes;
 
-	dnssec-enable		yes;
-	dnssec-validation	no;
+	random-device		"/dev/urandom";
+
+	max-cache-size		64m;
+
+	managed-keys-directory	"/var/named/dynamic";
+	geoip-directory		"/usr/share/GeoIP";
+
+	include			"/etc/crypto-policies/back-ends/bind.config";
 };
 
 logging {
diff --git a/sources/pns.pm/postinstall/install/etc/named.conf b/sources/pns.pm/postinstall/install/etc/named.conf
index 4357753..1d34f04 100644
--- a/sources/pns.pm/postinstall/install/etc/named.conf
+++ b/sources/pns.pm/postinstall/install/etc/named.conf
@@ -7,18 +7,26 @@ options {
 	dump-file		"data/cache_dump.db";
 	statistics-file		"data/named_stats.txt";
 	memstatistics-file	"data/named_mem_stats.txt";
+	secroots-file		"data/named.secroots";
+	recursing-file		"data/named.recursing";
 
-	listen-on	port 53 { any; };
-	listen-on-v6	port 53 { any; };
+	listen-on port 53	{ any; };
+	listen-on-v6 port 53	{ any; };
 
 	allow-query		{ none; };
 	allow-query-cache	{ none; };
 	allow-recursion		{ none; };
 
-	recursion		no;
+	dnssec-validation	yes;
 
-	dnssec-enable		yes;
-	dnssec-validation	no;
+	random-device		"/dev/urandom";
+
+	max-cache-size		64m;
+
+	managed-keys-directory	"/var/named/dynamic";
+	geoip-directory		"/usr/share/GeoIP";
+
+	include			"/etc/crypto-policies/back-ends/bind.config";
 };
 
 logging {
diff --git a/sources/svc.in/postinstall/install/etc/named.conf b/sources/svc.in/postinstall/install/etc/named.conf
index 43f65bf..f188cd3 100644
--- a/sources/svc.in/postinstall/install/etc/named.conf
+++ b/sources/svc.in/postinstall/install/etc/named.conf
@@ -7,18 +7,26 @@ options {
 	dump-file		"data/cache_dump.db";
 	statistics-file		"data/named_stats.txt";
 	memstatistics-file	"data/named_mem_stats.txt";
+	secroots-file		"data/named.secroots";
+	recursing-file		"data/named.recursing";
 
-	listen-on	port 53 { any; };
-	listen-on-v6	port 53 { any; };
+	listen-on port 53	{ any; };
+	listen-on-v6 port 53	{ any; };
 
 	allow-query		{ none; };
 	allow-query-cache	{ none; };
 	allow-recursion		{ none; };
 
-	recursion	no;
+	dnssec-validation	yes;
 
-	dnssec-enable		yes;
-	dnssec-validation	no;
+	random-device		"/dev/urandom";
+
+	max-cache-size		64m;
+
+	managed-keys-directory	"/var/named/dynamic";
+	geoip-directory		"/usr/share/GeoIP";
+
+	include			"/etc/crypto-policies/back-ends/bind.config";
 };
 
 logging {
-- 
2.54.0