I played with it in the past, it worked. But setting it up took more
work than using the bind that comes with OpenBSD. It's easier to insert
records in djbdns than bind and less error prone but if you want slaves
then you end up manually updating all of your slaves; bind is more like
set it and forget it. If you planned on using dynamic dns then djbdns
is not the answer. In my opinion, I'd stick with OpenBSD's bind but if
I found that OpenBSD's bind couldn't handle the load of serving records,
then I would give djbdns a try. As for security OpenBSD's bind is just
fine. Again, based of what I've read and experienced, if security is
your worry, stick with OpenBSD's bind, if load is a problem, give djbdns
a try or upgrade your server hardware or bandwidth. If you think about
it, even the root dns servers use bind, don't they? If this is true,
they would be taking more hits that any private dns server.
Anders Jvnsson wrote:
Hello folks.
I recently bought a very good book: Mastering FreeBSD and OpenBSD
security
They have a chapter dealing with DNS servers and there they mention
djbdns, they think it has some strong point s so I am somewhat curios
about if anybody out there has any viewpoint about using this instead of
BIND, especially since the last version djbdns I found was from 2001??!
I can't believe that it is so good that it is no need to patch it now
and then?
