[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: bind9 vs tinydns vs others

On December 3, 2003 04:04 pm, David Zejda wrote:

> thanks for reply!
> i only guess, as well as your dns depends on some database (RDBMS or LDAP
> or something else), it increases the danger of attacks, especially DoS (db
> is down -> dns respectively). flat files can't be "down". wouldn't be
> better to generate flat files from the backend db to avoid such risks?
> have you ever had such problems?

I would agree with you, others may not.  It's trivial to generate appropriate 
zone files from a database so (assuming you want your zones in a database) 
I'd still go with generating the files periodically rather than having DNS 
constantly polling the db.


> > David Zejda wrote:
> > > what do you prefer for authoritative dns?
> > > experiences/stability...?
> > > i have no verbose bind knowledge yet.
> > >
> > > thanks
> > > David
> >
> > We are running mydns on our auth name servers, feeding them data from a
> > self made PHP-based web interface. Works like a charm. Only drawback is
> > it's only available in testing and unstable (but most of our servers un
> > testing and are rock stable)
> >
> > Thomas

-- 
Fraser Campbell <fraser@wehave.net>                 http://www.wehave.net/
Georgetown, Ontario, Canada                               Debian GNU/Linux
Reply to: