Re: DNS server

To: Markus Welsch <markus.welsch@suk.net>
Cc: debian-isp@lists.debian.org
Subject: Re: DNS server
From: Eduard Ballester <ballester@ipsistemas.com>
Date: Fri, 14 Mar 2003 17:17:02 +0100
Message-id: <3E72007E.9050604@ipsistemas.com>
References: <3E71E106.9020605@suk.net>

So it should provide the base features of BIND ... but I'd rather liketo step away from it for security reasons.
Another option should be the posibiltiy to chroot it (like the defaultchroot of other daemons like postfix, etc).


BIND 9.2.x  of course,
  http://www.isc.org/products/BIND/bind9.html
Some of the important features of BIND 9 are:
* DNS Security
    DNSSEC (signed zones)
    TSIG (signed DNS requests)
* Views

One server process can provide multiple "views" of the DNS namespace,e.g. an "inside" view to certain clients, and an "outside" view to others.



You can configure it in chroote jail
  http://www.linuxsecurity.com/docs/LDP/Chroot-BIND-HOWTO.html

Regards
--
******************************************************************
 Eduard Ballester i Valios        mailto:ballester@ipsistemas.com
 GnuPG Public Key:
  http://pgp.dtype.org:11371/pks/lookup?op=get&search=0x58B18964
******************************************************************

Reply to:

Follow-Ups:
- Re: DNS server
  - From: martin f krafft <madduck@debian.org>

References:
- DNS server
  - From: Markus Welsch <markus.welsch@suk.net>

Prev by Date: DNS server
Next by Date: Re: DNS server
Previous by thread: DNS server
Next by thread: Re: DNS server
Index(es):
- Date
- Thread