Re: high performance caching bind server
On Mon, Mar 12, 2007 at 07:21:34PM -0600, Michael Loftis wrote:
> --On March 12, 2007 7:16:10 PM -0400 George Georgalis <firstname.lastname@example.org>
> >you're not recommending dnscache, you are recommending against it.
> >but really you are spreading FUD.
> >a) what various ways are you referring to?
> I don't have a boatload of specifics but one that bugs me is incomplete TCP
> support. You can only do an SOA/AXFR sequence over TCP.
that's not really relevant for a caching only resolver.
mind you, i don't use djbware because the license sucks...it's not free
software, which means that when it inevitably needs a patch, you're back to
the procedure of the bad old days (pre-linux) of download original source,
hunt for patches, download them, apply them, hope they don't conflict with
each other, hack them so that they don't conflict, compile, install. repeat
next time there's a bug fix.
IMO, this is such a PITA that his software isn't worth using.
there are other reasons for not using his software, in particular his
habit of reinventing the wheel in stupid ways (he might be a good
programmer but IMO he's a lousy sysadmin), but they're not really
relevant to dnscache.
i used to use maradns (packaged for debian, see below) as a small
caching-only resolver a few years ago. it was OK. i wouldn't use it as
an authoritative nameserver, partly because it doesn't use the bind zone
file format, but it's OK for just a cache. only reason i havent used it
recently is because i haven't needed to.
Maintainer: Kai Hendry <email@example.com>
Depends: libc6 (>= 2.3.6-6), adduser
Description: Simple security-aware Domain Name Service server
An easy to configure DNS server that functions as a
recursive and/or authoritative name server. Maradns is
optimised for serving a small number of domains quickly and
efficiently. Well suited to host your own private DNS server
for making up subdomains with minimal fuss. Maradns is
security-aware by utilising a special string library which
is resistant to buffer overflows and mandating to run as an
MaraDNS can be found from http://www.maradns.org/
Tag: interface::daemon, network::server, protocol::dns, role::program
craig sanders <firstname.lastname@example.org>
BOFH excuse #238:
You did wha... oh _dear_....