From owner-freebsd-security Thu Apr 5 9:41:11 2001 Delivered-To: freebsd-security@freebsd.org Received: from homer.softweyr.com (bsdconspiracy.net [208.187.122.220]) by hub.freebsd.org (Postfix) with ESMTP id 615D637B509 for ; Thu, 5 Apr 2001 09:41:08 -0700 (PDT) (envelope-from wes@softweyr.com) Received: from [127.0.0.1] (helo=softweyr.com ident=65e84f8068ef6612eb03e1d92679fac4) by homer.softweyr.com with esmtp (Exim 3.16 #1) id 14kfZd-0000DO-00; Tue, 03 Apr 2001 23:11:17 -0600 Message-ID: <3ACAACF5.A29297E7@softweyr.com> Date: Tue, 03 Apr 2001 23:11:17 -0600 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: Gerhard Sittig Cc: freebsd-security@freebsd.org Subject: Re: Something's happening with named References: <4630.010329@rostokgroup.com> <5.0.0.25.0.20010329195331.06d46eb0@mail.Go2France.com> <20010402025846.C75063@mail.webmonster.de> <20010402190426.H20830@speedy.gsinet> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Gerhard Sittig wrote: > > Sorry, I lack English words. But in German "heikel" > ("troublesome"?) would be most appropriate. I'm sure the other > replies will tend to some "highly dangerous from the non > technical POV", too. :( Exactly. DJB's code is quite good for what it does, but changing it without his permission violates his license. That's his choice, and I intend to respect it, as I'm sure we all do. Offering djbdns/tinydns (unmodified, as the port/package builds it) as an option at or after installation is a fine idea, but I wouldn't want to replace bind with it due to the licensing inflexibility. I can also think of numerous not-so-large installations that may want to use features of bind that are not in djbdns, like Dynamic DNS. > We all should be glad that it's so easy to not run bind and > install djbdns from the ports instead. This makes it a > consious(sp?) decision by the admin. It's very much like running conscious > an MTA different from sendmail or running non main stream > software at all: You're free to do it but you have to take care > yourself ... This would be one of the goals of making FreeBSD installations more granular, being able to choose between multiple MTA configurations, multiple DNS server configurations, etc. -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC wes@softweyr.com http://softweyr.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message