Re: bind8 vs bind9

To: debian-user@lists.debian.org
Subject: Re: bind8 vs bind9
From: Nathan E Norman <nnorman@incanus.net>
Date: Mon, 18 Nov 2002 15:11:23 -0600
Message-id: <[🔎] 20021118211123.GV26432@incanus.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 87ptt2oehm.fsf@pooh.lan.honeypot.net>
References: <5EOJ9C.A.cIG.rXS29@murphy> <[🔎] nhxwunaoigy.fsf@sadl12238.sandia.gov> <[🔎] 87ptt2oehm.fsf@pooh.lan.honeypot.net>

On Mon, Nov 18, 2002 at 01:38:13PM -0600, Kirk Strauser wrote:
> 
> At 2002-11-18T18:12:13Z, "Gary Hennigan" <glhenni@sandia.gov> writes:
> 
> > ...if security is *the* major concern in a DNS installation it's probably
> > a good idea to stay away from BIND altogether.
> 
> I'd disagree for one main reason: BIND is Open Source, and tinydns is not.

Uh, of course tinydns (sic; it's really djbdns) is open source.
Perhaps you meant to say _DFSG Free_ ?

> More security compromises have been found in the former, but it has perhaps
> 100 times the number of users testing it and programmers examining it.
> Frankly, as a programmer, I would not waste my time auditing tinydns when I
> could make a bigger contribution to BIND.

Good for you.

-- 
Nathan Norman - Incanus Networking mailto:nnorman@incanus.net
  Good judgement comes from experience.
  Experience comes from bad judgement.
          -- Unattributed

Reply to:

Follow-Ups:
- Re: bind8 vs bind9
  - From: Alan Shutko <ats@acm.org>
- Re: bind8 vs bind9
  - From: Kirk Strauser <kirk@strauser.com>
- Re: bind8 vs bind9
  - From: Rob Weir <rweir@softhome.net>

References:
- Re: bind8 vs bind9
  - From: "Gary Hennigan" <glhenni@sandia.gov>
- Re: bind8 vs bind9
  - From: Kirk Strauser <kirk@strauser.com>

Prev by Date: Re: DHCP Kernel Options - where to set?
Next by Date: Re: bind8 vs bind9
Previous by thread: Re: bind8 vs bind9
Next by thread: Re: bind8 vs bind9
Index(es):
- Date
- Thread