From owner-freebsd-questions@FreeBSD.ORG Sun Aug 5 17:24:10 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C109316A420 for ; Sun, 5 Aug 2007 17:24:10 +0000 (UTC) (envelope-from rakheshster@gmail.com) Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.234]) by mx1.freebsd.org (Postfix) with ESMTP id 80F4A13C461 for ; Sun, 5 Aug 2007 17:24:10 +0000 (UTC) (envelope-from rakheshster@gmail.com) Received: by wx-out-0506.google.com with SMTP id i29so958452wxd for ; Sun, 05 Aug 2007 10:24:09 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:date:x-x-sender:to:cc:subject:in-reply-to:message-id:references:mime-version:content-type:from:sender; b=JXvbu5v2eZkhCSpPaFhGS7MuaKRKr+RrPk7G26uQ2WelQijiQfv27gguQ/DoA99rz4eeOP5p2wRteOTFddAdaODwLSOLt+rmnmGKaVUHbP5AmrwujNQvhF6IRwtEBGEf29LguYBF74YSSOpmz2hgdNAqvBq+M6omCpNEeSKxHtE= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:x-x-sender:to:cc:subject:in-reply-to:message-id:references:mime-version:content-type:from:sender; b=OAgfS2+zpoBSDFNKrGZXAyYM0KqEtc1adgbBvwUZs++3QIG61uTmRfOHScis4z2b0DylaNQQiAakKj2RdfJ2WDW2Dsvf3LuCYm6jJOZKW1oc4dmlnj+JPYkv0W1K6Pz+T5ikq0AdtwzA4Wx0/tK4MrDTlZ/xFpmMGNIOGFYVgTg= Received: by 10.70.32.10 with SMTP id f10mr8449909wxf.1186334649257; Sun, 05 Aug 2007 10:24:09 -0700 (PDT) Received: from smtp.home.rakhesh.com ( [82.178.137.21]) by mx.google.com with ESMTPS id r28sm6140273ele.2007.08.05.10.24.05 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 05 Aug 2007 10:24:08 -0700 (PDT) Received: from asterix.home.rakhesh.com (asterix.home.rakhesh.com [192.168.17.23]) by smtp.home.rakhesh.com (Postfix) with ESMTP id 1FC7111420; Sun, 5 Aug 2007 21:23:47 +0400 (GST) Date: Sun, 5 Aug 2007 21:21:52 +0400 (GST) X-X-Sender: rakhesh@asterix.home.rakhesh.com To: Doug Barton In-Reply-To: <46B5FE07.5080004@FreeBSD.org> Message-ID: <20070805211059.P77032@asterix.home.rakhesh.com> References: <499c70c0707260136hea82f27s87dfa53432d0e409@mail.gmail.com> <94c6ae7ae570814564d364bfe9aad8ea@szalbot.homedns.org> <20070801030504.GA3773@bifrost.agrussell.com> <426DE541-FB51-44FF-B7F4-B34E0F9A7861@goldmark.org> <46B0DB5F.4020401@FreeBSD.org> <60BEAECB-C72A-46B3-90D7-F3AB8778605D@goldmark.org> <46B0F17C.2010506@FreeBSD.org> <20070805091932.B67919@scrat.home.rakhesh.com> <46B5FE07.5080004@FreeBSD.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed From: Rakhesh Sasidharan Sender: Rakhesh Sasidharan X-Mailman-Approved-At: Sun, 05 Aug 2007 17:30:28 +0000 Cc: Zbigniew Szalbot , Rakhesh Sasidharan , "A.G. Russell IV" , Jeffrey Goldberg , Freebsd questions Subject: Re: Waiting for BIND security announcement X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 05 Aug 2007 17:24:10 -0000 > >> This has probably been asked before, > > Heh, no, never. :) That's a relief. :) >> but if BIND is available in ports then why is it also available in >> contrib? > > Couple of reasons, of relatively equal importance depending on who you > speak to. BSD systems have "always" (I haven't verified this, but > people who should know have told me) shipped with dns stuff on board, > so there is resistance to the idea of stripping it out for that > reason. The other thing that is a concern to a lot of people is that > BIND is more than just named. Take a look at the WITHOUT_BIND* knobs > in src.conf(1) in 7-current or make.conf(1) in 6-stable to get an idea > of how things break down. I have a standing offer to either remove > BIND from the base, or flip the defaults for some of those knobs to > "NO" if the community wants it that way. Makes sense. So to summarize the answer to my question: * BIND is there in contrib coz lot of stuff depends on it and so its best left there. * BIND is also there in ports coz the one there offers you a lot more build time options, is newer, gets updates faster, and is also easier to get up and running with out of the box (in some situations atleast). Neat! :) >> Are there any benefits in choosing the one in contrib over the one >> in ports? > > Advantage to the one in contrib is that it's right there, and the new > default named.conf (and associated files) makes it possible to start > up a local resolver "out of the box." > > If you want a greater degree of freedom in build-time configuration, > or you want a version other than what is in your base (for example, > you want to use 9.4.x but you're on a 6-stable machine), then you can > use the ports. The ports also have an option to overwrite the files in > the base if that makes things easier in your environment. > > hth, Thanks! Rakhesh > > Doug > > -- > > This .signature sanitized for your protection > >