From owner-freebsd-isp@FreeBSD.ORG Wed Jan 7 09:28:51 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 165B516A4CE for ; Wed, 7 Jan 2004 09:28:51 -0800 (PST) Received: from tomts22-srv.bellnexxia.net (tomts22.bellnexxia.net [209.226.175.184]) by mx1.FreeBSD.org (Postfix) with ESMTP id D7B2643D3F for ; Wed, 7 Jan 2004 09:28:46 -0800 (PST) (envelope-from freeman@cs.dal.ca) Received: from [192.168.1.4] ([65.93.82.31]) by tomts22-srv.bellnexxia.net ESMTP <20040107172844.REAH26187.tomts22-srv.bellnexxia.net@[192.168.1.4]>; Wed, 7 Jan 2004 12:28:44 -0500 From: Kenny Freeman To: freebsd-isp@freebsd.org Date: Wed, 7 Jan 2004 13:26:21 -0500 User-Agent: KMail/1.5.4 References: <20031211213245.I61349@vette.gigo.com> In-Reply-To: <20031211213245.I61349@vette.gigo.com> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha1; boundary="Boundary-02=_R9E//ebY+mj2YBI"; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200401071326.25126.freeman@cs.dal.ca> cc: "::::Carlos:::Ariel:::Canta::::::::" Subject: Re: djbdns X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: freeman@cs.dal.ca List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Jan 2004 17:28:51 -0000 --Boundary-02=_R9E//ebY+mj2YBI Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Description: signed data Content-Disposition: inline My experience with bind has been less than fun - a pain to maintain with al= l=20 of these security fixes and also the file format is terrible. I switched to= =20 djbdns as soon as I found out about it and was happy with a test server tha= t=20 I setup. It is a bit of a hassle to get up and running, but when it is=20 finally setup properly you don't have to touch it at all, period. I have be= en=20 running djbdns for well over a year, more like over two years and I have no= t=20 had to touch it even once in that time. I have a perl script that updates t= he=20 data files from a MySQL database. I also have a CGI interface to the db, so= I=20 can add/edit/delete dns records thru my web browser. The djbdns data file=20 format is very simple and a joy to work with compared to binds. You should= =20 note however that with djbdns, instead of using 2 ips for 2 nameservers I=20 have to use 2xcache ips, 2xserver ips, and 2x zone xfer ips, and also that= =20 the caches have to be notified of any dns servers for domains that you host= -=20 my perl script takes care of that for me tho. Oh, and another thing... I ha= ve=20 heard of people having problems with djbdns on extremely heavily loaded=20 servers where queries were getting dropped - in that case I would use a rou= nd=20 robin nat in front of the servers to distribute the load among many dns=20 servers... my $0.02. =2DKenny On December 12, 2003 12:35 am, Jason Fesler wrote: > > How does djbdns measure up to bind anyway? Bind works wonderfully > > for us.. any reasons someone can come up with (other then the beaten > > to deal security arguments) why a person should change over? > > If you are happy with bind; > If you stay current on bind security problems; > If you find the ISC to be hoopy froods and DJB to be, well, DJB; > then focus your attention to more fruitful efforts. > > Really. > > --jason > (a die hard djbdns user, who fears bind to death, but not an evangelist) > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" --Boundary-02=_R9E//ebY+mj2YBI Content-Type: application/pgp-signature Content-Description: signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQA//E9RJgVCrHv0mQsRAlK9AKCoWbG4jcC+wgPRJws3/i6cXreWbACbBh8L raBuVGJEYjhveOrniWLeGI0= =FKYQ -----END PGP SIGNATURE----- --Boundary-02=_R9E//ebY+mj2YBI--