Date: Mon, 09 Jul 2012 15:36:32 +0200 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Matt Dawson <matt@chronos.org.uk> Cc: freebsd-security@freebsd.org Subject: Re: Replacing BIND with unbound Message-ID: <86y5mtm4yn.fsf@ds4.des.no> In-Reply-To: <201207090449.q694nW9C094754@chronos.org.uk> (Matt Dawson's message of "Mon, 9 Jul 2012 05:49:32 %2B0100") References: <CA%2BQLa9B-Dm-=hQCrbEgyfO4sKZ5aG72_PEFF9nLhyoy4GRCGrA@mail.gmail.com> <4FF2E00E.2030502@FreeBSD.org> <86bojxow6x.fsf@ds4.des.no> <89AB703D-E075-4AAC-AC1B-B358CC4E4E7F@lists.zabbadoz.net> <4FF8C3A1.9080805@FreeBSD.org> <0AFE3C4A-22DB-4134-949F-4D05BBFC4C6C@lists.zabbadoz.net> <4FF8CA35.7040209@FreeBSD.org> <4FF8D89B.1030308@bluerosetech.com> <4FF95365.7010605@FreeBSD.org> <20473.50867.199081.295841@hergotha.csail.mit.edu> <201207090449.q694nW9C094754@chronos.org.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Matt Dawson <matt@chronos.org.uk> writes: > TBH, even having the root zone in base is a bit daft. The root zone we ship is a hint used to bootstrap named. Without it, named is a brick, unless all you want is an authoritative-only nameserver. All named does with that hint file is use it to locate a root server from which it can obtain a fresh copy of the root zone. Feel free to replace it with a fresh copy from InterNIC. Since the root zone is signed, you could even set up a cron job to do automatically update the hint file at regular intervals. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86y5mtm4yn.fsf>