Assets 48
  • The value for netprobe_timeout was read from the command-line, but not from the configuration file any more. This is a regression introduced in the previous version, that has been fixed.
  • The default value for netprobe timeouts has been raised to 60 seconds.
  • A hash of the body is added to query parameters when sending DoH queries with the POST method in order to work around badly configured proxies.

@jedisct1 jedisct1 released this Nov 15, 2018 · 18 commits to master since this release

Assets 48
  • Official builds now support TLS 1.3.
  • The timeout for the initial connectivity check can now be set from the command line.
  • An Accept: header is now always sent with GET queries.
  • BOMs are now ignored in configuration files.
  • In addition to SOCKS, HTTP and HTTPS proxies are now supported for DoH servers.

@jedisct1 jedisct1 released this Oct 3, 2018 · 39 commits to master since this release

Assets 48
  • Go >= 1.11 is now supported
  • The flipside is that Windows XP is not supported any more :(
  • When dropping privileges, there is no supervisor process any more.
  • DNS options used to be cleared from DNS queries, with the exception of flags and payload sizes. This is not the case any more.
  • Android builds use a newer NDK, and add compatibility with API 19.
  • DoH queries are smaller, since workarounds are not required any more after Google updated their implementation.

@jedisct1 jedisct1 released this Jul 9, 2018 · 70 commits to master since this release

Assets 48
2.0.16

@jedisct1 jedisct1 released this Jun 6, 2018 · 119 commits to master since this release

Assets 48
  • Support for proxies (HTTP/SOCKS) was added. All it takes to route all TCP queries to Tor is add proxy = "socks5://127.0.0.1:9050" to the configuration file.
  • Querylog files have a new record indicating the outcome of each transaction.
  • Pre-built binaries for Linux are statically linked on all architectures.

@jedisct1 jedisct1 released this May 19, 2018 · 133 commits to master since this release

Assets 48
  • Supports DNS-over-HTTPS draft 08.
  • Netprobes don't use port 0 by default, as this causes issues with Little Snitch and FreeBSD.

@jedisct1 jedisct1 released this May 16, 2018 · 139 commits to master since this release

Assets 48
2.0.13

@jedisct1 jedisct1 released this May 10, 2018 · 144 commits to master since this release

Assets 48
  • Further compatibility fixes for Alpine Linux/i386 and Android/i386 have been made. Thanks to @aead for his help!
  • The proxy will now wait for network connectivity before starting. This is useful if the proxy is automatically started at boot, possibly before the network is fully configured.
  • The IPv6 blocking module now returns synthetic SOA records to improve compatibility with downstream resolvers and stub resolvers.

@jedisct1 jedisct1 released this Apr 27, 2018 · 169 commits to master since this release

Assets 48
  • Version 2.0.11
  • This release fixes a long-standing bug that caused the proxy to block or crash when Position-Independent Executables were produced.
    This bug only showed up when compiled on (not for) Alpine Linux and Android, for some CPU architectures.
  • New configuration settings: cache_neg_min_ttl and cache_neg_max_ttl, to clamp the negative caching TTL.