Date: Wed, 22 Mar 2006 19:29:08 -0500 From: "Russell E. Meek" <rmeek@russellmeek.net> To: Steve Camp <steve@camp.com>, freebsd-questions@freebsd.org Subject: Re: TinyDNS question Message-ID: <4421EBD4.9000501@russellmeek.net> In-Reply-To: <20060322170833.G8316@aslan.camp.com> References: <20060322170833.G8316@aslan.camp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Steve Camp wrote: > Hi Russell, > > I am not very familiar with TinyDNS, other than it originated from > D.J. Bernstein, and, as such, I tend to think of it as > > o small > o fast > o secure > > Does that pretty well sum up TinyDNS? Are there any downsides to > TinyDNS? Are there any things that "normal" DNS (i.e. BIND) can do, > that TinyDNS cannot? > > Regards, > > -- > Steve Camp > steve@camp.com > > > On Thu, Mar 23, 2006 at 12:06:17AM -0000, anonymous@aries.russellmeek.net wrote: > >> Steve, >> >> If you are using TinyDNS (DJBDNS) then VegaDNS www.vegadns.org will allow >> you to accomplish exactly what you are looking for. >> >> Check it out, seems to work extremely well. >> >> Thanks, >> >> Russell >> >> On 3/22/2006, "Steve Camp" <steve@camp.com> wrote: >> >> >>> Someone is potentially interested in leasing a domain name from me. >>> One of the technical points is DNS control. What DNS tools exist that >>> would allow me to maintain the DNS servers, but let this party login >>> and administer DNS entries. I'm thinking along the lines of some sort >>> of web-based tool. A user would login / authenticate themselves, but >>> the tool would limit the domains they could manage in some fashion. >>> >>> Regards, >>> >>> -- >>> Steve Camp >>> steve@camp.com >>> >>> >>> _______________________________________________ >>> freebsd-questions@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions >>> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >>> Steve, Yes the DJBDNS suite (TinyDNS, DNSCache) is much more secure and faster than BIND. Many people have issues with Bernsteins licenses, etc. For me it does not matter. TinyDNS is a different setup for creating A records and such, but once learned is much better than BIND. DJBDNS is just like QMail - a collection of small apps to perform the larger job at hand. Here are a couple of excellent sites to get you started. http://www.lifewithdjbdns.com/ http://matt.simerson.net/computing/dns/djbdns-freebsd.shtml (Excellent Qmail information also) http://ezine.daemonnews.org/200210/ezdjbdns.html (DJBDNS Setup for FreeBSD) Just remember that once properly configured many of the main "security" exploits you find BIND suffers from (Cache Poisoning, etc.) are extremely difficult to perform if not impossible to perform. Thanks, Russell
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4421EBD4.9000501>