From owner-freebsd-hackers@FreeBSD.ORG Sun Jul 8 09:21:47 2012 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx2.freebsd.org (mx2.freebsd.org [IPv6:2001:4f8:fff6::35]) by hub.freebsd.org (Postfix) with ESMTP id 22EDC106564A for ; Sun, 8 Jul 2012 09:21:47 +0000 (UTC) (envelope-from dougb@FreeBSD.org) Received: from opti.dougb.net (hub.freebsd.org [IPv6:2001:4f8:fff6::36]) by mx2.freebsd.org (Postfix) with ESMTP id B4E07155E8B; Sun, 8 Jul 2012 09:21:46 +0000 (UTC) Message-ID: <4FF9512A.8050803@FreeBSD.org> Date: Sun, 08 Jul 2012 02:21:46 -0700 From: Doug Barton Organization: http://SupersetSolutions.com/ User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:13.0) Gecko/20120621 Thunderbird/13.0.1 MIME-Version: 1.0 To: "Bjoern A. Zeeb" References: <4FF2E00E.2030502@FreeBSD.org> <86bojxow6x.fsf@ds4.des.no> <89AB703D-E075-4AAC-AC1B-B358CC4E4E7F@lists.zabbadoz.net> <4FF8C3A1.9080805@FreeBSD.org> <20472.51031.308284.775990@hergotha.csail.mit.edu> <07345CE5-EE3A-413D-84BC-C9DA63FCBB9E@bsdimp.com> In-Reply-To: X-Enigmail-Version: 1.4.2 OpenPGP: id=1A1ABC84 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: FreeBSD Hackers , =?ISO-8859-1?Q?Dag-Erling_Sm=F8rgrav?= Subject: Re: Replacing BIND with unbound (Was: Re: Pull in upstream before 9.1 code freeze?) X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Jul 2012 09:21:47 -0000 On 07/08/2012 01:03, Bjoern A. Zeeb wrote: > > On 8. Jul 2012, at 02:44 , Warner Losh wrote: > >> >> On Jul 7, 2012, at 5:33 PM, Garrett Wollman wrote: >>> < said: >>> >>>> BIND in the base today comes with a full-featured local resolver >>>> configuration, which I'm confident that Dag-Erling can do for unbound >>>> (and which I would be glad to assist with if needed). Other than that, >>>> what integration are you concerned about? >>> >>> The utilities (specifically host(1) and dig(1)) are the only >>> user-visible interfaces I care about. I don't see any need for there >>> to be an authoritative name server in the base system. So long as the >>> resolver works properly and does DNSsec validation.... >> >> The only reason I want it in the base system is that ports don't cross build very well, but the base system does. That's a weak +1 for keeping something in the base system, but I'll be the first to admit it is a second or third tier argument at best. > > The real reason you want exactly these tools in base is that otherwise you > end up rewriting tiny parts of freebsd-update etc that actually depend on > host, etc. to query SRV for SRV records. That's an implementation issue, and is easily handled with drill, or the host-like program we all agree is a really-nice-to-have. -- This .signature sanitized for your protection