RE: About DNS (BIND) with Database

From: Vahric MUHTARYAN (vahric_at_doruk.net.tr)
Date: 11/18/03

  • Next message: Kurt Jaeger: "Re: Traffic Shaping for NNTP on Username-basis" 
    To: <freebsd-isp@freebsd.org>
Date: Tue, 18 Nov 2003 14:51:28 +0200

    Thanks for your helps guys _!
    Please don't upset yourselfs Everybody have well-knows or likes some
    programs or application instead of other one. Those are their choices ?!

    Thanks for all opinions again ....

    I will setup Mydns in short while and inform yours ...
    Vahric

    -----Original Message-----
    From: owner-freebsd-isp@freebsd.org
    [mailto:owner-freebsd-isp@freebsd.org] On Behalf Of Simon Gray
    Sent: Tuesday, November 18, 2003 2:36 PM
    To: Len Conrad
    Cc: freebsd-isp@freebsd.org
    Subject: Re: About DNS (BIND) with Database

    > >personally i wouldn't use bind, its had a bad security history.
    >
    > YEP, and it is VERY OLD HISTORY, but it goes back 3 years.
    > So what's your gripe about security vulnerabilities in BIND since
    early
    2001?
    > If you don't have any concrete, recent examples, then stop the FUD.
    > There are reasons some people don't want to use BIND, but security
    isn't
    > one of them.

    My apologies if this thread has hit a nerve, I wasn't picking at anyone.
    I'm
    just giving my point of view.

    The history may be old in terms of computing, but I won't how many
    vulnerable systems are still out there? System admins that may not even
    know
    how to upgrade or even know that the vulns exist.

    bind advisories:
    http://www.cert.org/advisories/CA-2002-19.html
    http://www.cert.org/advisories/CA-2001-02.html
    http://www.cert.org/advisories/CA-1999-14.html

    Plus http://www.isc.org/products/BIND/bind-security.html isn't a very
    good
    track record is it? Track records are pretty much all you have to go on
    with
    software, unless you audit all the code yourself.

    If people want to use bind or any other package, they do so at their
    choice.
    I'm just saying in my opinion I think there are better alternative.

    If you're happy using bind, use bind. If you're happy with windows 95,
    use
    it.

    Simon

    _______________________________________________
    freebsd-isp@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-isp
    To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"

    _______________________________________________
    freebsd-isp@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-isp
    To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"

  • Next message: Kurt Jaeger: "Re: Traffic Shaping for NNTP on Username-basis"

    Relevant Pages

    • Re: RINGS OR SADDLES vs. TRIGGERS
      ... > Any comments, opinions or discussion? ... > GJB ... I prefer triggers, because they won't bind up when pressed too hard, or ...
      (rec.music.makers.trumpet)
    • Re: multiple process listening to same port - what is the expected behaviour?
      ... >process to bind with a.b.c.d.port-n? ... Expressed in this posting are my opinions. ... to opinions held by my employer, Sun Microsystems. ...
      (comp.unix.solaris)
    • Re: Problem Resolving names into ip addresses
      ... I understand that bind is used and is somehow separate. ... name resolution is done via two mechanisms: ... you can use tcpdump to see if you are querying for your name ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
      (Debian-User)
    • RE: Bind 8.3.2: How to get secondary updating conf from primary?
      ... Subject: Bind 8.3.2: How to get secondary updating conf from ... On Tue, 14 Oct 2003, Andrew Nelson wrote: ... To unsubscribe, ...
      (freebsd-isp)
    • RE: Bind Conf
      ... Eyeball the entries in your named.conf file and bounce them ... Subject: Bind Conf ... On Behalf Of Jay Berryman ... unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe ...
      (RedHat)