dnsmasq

USE флаги

• auth-dns - Add support for acting as an authorative DNS server.
• conntrack - Add support for Linux conntrack connection marking.
• dbus - Enable dbus support for anything that needs it (gpsd, gnomemeeting, etc)
• dhcp - Enable support for acting as a DHCP server.
• dhcp-tools - Install extra command line tools for manually managing DHCP leases.
• dnssec - Enable support DNSSEC validation and caching.
• dumpfile - Include code to dump packets to a libpcap-format file for debugging
• id - Whether report *.bind CHAOS info to clients, otherwise forward such requests upstream instead
• idn - Enable support for Internationalized Domain Names
• inotify - Enable inotify filesystem monitoring support
• ipv6 - Add support for IP version 6
• libidn2 - Enable support for Internationalized Domain Names, via net-dns/libidn2 rather than net-dns/libidn
• loop - Include functionality to probe for and remove DNS forwarding loops
• lua - Enable Lua scripting support
• lua_single_target_lua5-1 - Build for Lua 5.1 only
• lua_single_target_lua5-3 - Build for Lua 5.3 only
• lua_single_target_lua5-4 - Build for Lua 5.4 only
• lua_single_target_luajit - Build for LuaJIT only
• nettlehash - Use hashing functions from dev-libs/nettle
• nls - Add Native Language Support (using gettext - GNU locale utilities)
• script - Enable support for calling scripts when leases change.
• selinux - !!internal use only!! Security Enhanced Linux support, this must be set by the selinux profile or breakage will occur
• static - !!do not set this during bootstrap!! Causes binaries to be statically linked instead of dynamically
• tftp - Enables built in TFTP server for netbooting.

Советы по безопасности