From owner-freebsd-questions@FreeBSD.ORG Wed Mar 9 22:00:52 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C725B16A4CE for ; Wed, 9 Mar 2005 22:00:52 +0000 (GMT) Received: from skipjack.no-such-agency.net (skipjack.no-such-agency.net [64.142.114.146]) by mx1.FreeBSD.org (Postfix) with ESMTP id 728FE43D58 for ; Wed, 9 Mar 2005 22:00:52 +0000 (GMT) (envelope-from jpp@cloudview.com) Received: from skipjack.no-such-agency.net (localhost [127.0.0.1]) by skipjack.no-such-agency.net (Postfix) with ESMTP id 0312034D44E; Wed, 9 Mar 2005 14:00:51 -0800 (PST) Received: from [192.168.2.120] (blackhole.no-such-agency.net [64.142.103.196]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by skipjack.no-such-agency.net (Postfix) with ESMTP id 25B5B34D44D; Wed, 9 Mar 2005 14:00:51 -0800 (PST) Message-ID: <422F7212.4080601@cloudview.com> Date: Wed, 09 Mar 2005 14:00:50 -0800 From: John Pettitt Organization: CloudView Photographic User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Paul Schmehl References: <2360.216.220.59.169.1110404567.squirrel@216.220.59.169> <0FB997694448EE4FF1EFE202@utd49554.utdallas.edu> In-Reply-To: <0FB997694448EE4FF1EFE202@utd49554.utdallas.edu> X-Enigmail-Version: 0.90.1.1 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-AV-Checked: by skipjack cc: freebsd-questions@freebsd.org cc: Ean Kingston cc: sn1tch Subject: Re: feedback on a good DNS server X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Mar 2005 22:00:52 -0000 Paul Schmehl wrote: > --On Wednesday, March 09, 2005 04:42:46 PM -0500 Ean Kingston > wrote: > >> >>> I am looking into setting up a DNS server on our network using an >>> existing FreeBSD box. I have been looking around and reading comments >>> on different DNS servers out their but everyone has mixed feelings. I >>> know someone who uses BIND and is happy with it .. is their any reason >>> why BIND wouldn't be a good choice? All i need is to have DNS running >>> on a webserver so we can host our site internally...any feedback on >>> this setup and/or DNS server is appreciated >> >> >> I belive Bind is still included with the base FreeBSD OS. I've used >> it in >> the past and never had any problems with it. As always, YMMV. > > > If you're concerned about security, BIND has had a large number of > security problems. DJBDNS is in /usr/ports/dns/ and it's very easy to > setup and very easy to use. More responsive than BIND as well, and > you don't have to figure out the esoteric syntax that BIND requires. > "Has had" being the operative phrase - that would be bind 4 and bind 8 - bind 9 which is a rewrite has a pretty solid record - also in the ports tree. The argument against DJBDNS comes down to a) DJB annoys a lot of people and b) some of those people thinkg DJBDNS is not standards compliant. This argument is about as accurate as the "bind not secure" argument - they both may have a grain of truth in the past. The DNS discussion is a lot like the Linux vs BSD discussion - it's a religious issue (strongly held views not always supported by facts) John