Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 14 Jul 2009 00:06:22 -0400
From:      John Almberg <jalmberg@identry.com>
To:        vogelke+unix@pobox.com
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Should DNS be on same server as webserver?
Message-ID:  <7DD18C43-5B03-4624-9487-ACC4AFAF000F@identry.com>
In-Reply-To: <20090713222746.5D519BF05@kev.msw.wpafb.af.mil>
References:  <20090713222746.5D519BF05@kev.msw.wpafb.af.mil>

next in thread | previous in thread | raw e-mail | index | archive | help

On Jul 13, 2009, at 6:27 PM, Karl Vogel wrote:

>>> On Mon, 13 Jul 2009 13:03:24 -0400,
>>> Jon Radel <jon@radel.com> said:
>
> J> Apache and Bind have both had their security issues over the  
> years, and
> J> there's something to be said for running them on different  
> servers to
> J> reduce both the "all eggs in one basket" factor and the ease of
> J> spreading an attack.  (Yes, I'm assuming what you're actually
> J> running....)
>
>    You can fix the security problems by dumping Bind and using djbdns.
>    It's very easy to set up a caching nameserver without using all the
>    memory on your system.  See http://www.lifewithdjbdns.com/ for  
> more.


I actually do use djbdns. Super easy to use, once you figure it out.

-- John



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7DD18C43-5B03-4624-9487-ACC4AFAF000F>