Re: DNS server
So it should provide the base features of BIND ... but I'd rather like
to step away from it for security reasons.
Another option should be the posibiltiy to chroot it (like the default
chroot of other daemons like postfix, etc).
BIND 9.2.x of course,
http://www.isc.org/products/BIND/bind9.html
Some of the important features of BIND 9 are:
* DNS Security
DNSSEC (signed zones)
TSIG (signed DNS requests)
* Views
One server process can provide multiple "views" of the DNS namespace,
e.g. an "inside" view to certain clients, and an "outside" view to others.
You can configure it in chroote jail
http://www.linuxsecurity.com/docs/LDP/Chroot-BIND-HOWTO.html
Regards
--
******************************************************************
Eduard Ballester i Valios mailto:ballester@ipsistemas.com
GnuPG Public Key:
http://pgp.dtype.org:11371/pks/lookup?op=get&search=0x58B18964
******************************************************************
Reply to:
- References:
- DNS server
- From: Markus Welsch <markus.welsch@suk.net>