From owner-freebsd-net@FreeBSD.ORG  Mon May  5 14:38:21 2003
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E15BB37B401
	for <freebsd-net@freebsd.org>; Mon,  5 May 2003 14:38:20 -0700 (PDT)
Received: from ints.mail.pike.ru (ints.mail.pike.ru [195.9.45.194])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B4FDF43F75
	for <freebsd-net@freebsd.org>; Mon,  5 May 2003 14:38:18 -0700 (PDT)
	(envelope-from babolo@cicuta.babolo.ru)
Received: (qmail 69033 invoked from network); 5 May 2003 21:57:08 -0000
Received: from babolo.ru (HELO cicuta.babolo.ru) (194.58.226.160)
  by ints.mail.pike.ru with SMTP; 5 May 2003 21:57:08 -0000
Received: (nullmailer pid 1014 invoked by uid 136);
	Mon, 05 May 2003 21:41:32 -0000
X-ELM-OSV: (Our standard violations) hdr-charset=KOI8-R; no-hdr-encoding=1
In-Reply-To: <3D285157-7F30-11D7-8414-003065ABFD92@mac.com>
To: Charles Swiger <cswiger@mac.com>
Date: Tue, 6 May 2003 01:41:32 +0400 (MSD)
From: "."@babolo.ru
X-Mailer: ELM [version 2.4ME+ PL99b (25)]
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII
Message-Id: <1052170892.180570.1013.nullmailer@cicuta.babolo.ru>
cc: freebsd-net@freebsd.org
Subject: Re: To DNS serve, or not to
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 05 May 2003 21:38:22 -0000

> On Monday, May 5, 2003, at 03:15 PM, agent dero wrote:
> > I am setting up a home based server, that will host a couple domain 
> > names
> > on 768k SDSL. I have the server all lined up and I am wondering what I
> > should do about DNS serving. I figure I have three choices.
> > a) install BIND on my web/ftp/lan server (also doubling as network 
> > firewall)
> > b) get an old junk box, like 300Mhz w/ 64MB RAM and use it as the DNS 
> > Server.
> > c) use a free off-location service, such as zoneedit.com to handle DNS
> > requests, that come to my static IP.
> 
> Get and old 300MHz box per B, and use it as your network firewall.  
> Don't run any other services on it; use your existing server to handle 
> web, ftp, and DNS.
.. in jails.
This effectively protects from remote exploits
(converts them to DOS)
http://free.babolo.ru/ports/jailup/
for easy to use and adnministrate jail based
services