From owner-freebsd-questions@FreeBSD.ORG  Tue Jul 14 08:16:31 2009
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 53835106564A
	for <freebsd-questions@freebsd.org>;
	Tue, 14 Jul 2009 08:16:31 +0000 (UTC)
	(envelope-from mail25@bzerk.org)
Received: from ei.bzerk.org (tunnel490.ipv6.xs4all.nl
	[IPv6:2001:888:10:1ea::2])
	by mx1.freebsd.org (Postfix) with ESMTP id D82508FC0C
	for <freebsd-questions@freebsd.org>;
	Tue, 14 Jul 2009 08:16:30 +0000 (UTC)
	(envelope-from mail25@bzerk.org)
Received: from ei.bzerk.org (BOFH@localhost [127.0.0.1])
	by ei.bzerk.org (8.14.2/8.14.2) with ESMTP id n6E8GPOC027777;
	Tue, 14 Jul 2009 10:16:25 +0200 (CEST)
	(envelope-from mail25@bzerk.org)
Received: (from bulk@localhost)
	by ei.bzerk.org (8.14.2/8.14.2/Submit) id n6E8GPHf027776;
	Tue, 14 Jul 2009 10:16:25 +0200 (CEST)
	(envelope-from mail25@bzerk.org)
Date: Tue, 14 Jul 2009 10:16:24 +0200
From: Ruben de Groot <mail25@bzerk.org>
To: Steve Bertrand <steve@ibctech.ca>
Message-ID: <20090714081624.GA27636@ei.bzerk.org>
Mail-Followup-To: Ruben de Groot <mail25@bzerk.org>,
	Steve Bertrand <steve@ibctech.ca>,
	John Almberg <jalmberg@identry.com>, vogelke+unix@pobox.com,
	freebsd-questions@freebsd.org
References: <20090713222746.5D519BF05@kev.msw.wpafb.af.mil>
	<7DD18C43-5B03-4624-9487-ACC4AFAF000F@identry.com>
	<4A5C0DB3.5090205@ibctech.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4A5C0DB3.5090205@ibctech.ca>
User-Agent: Mutt/1.4.2.3i
X-Spam-Status: No, score=-4.4 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00
	autolearn=ham version=3.2.5
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on ei.bzerk.org
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.0.1
	(ei.bzerk.org [127.0.0.1]); Tue, 14 Jul 2009 10:16:29 +0200 (CEST)
Cc: John Almberg <jalmberg@identry.com>, vogelke+unix@pobox.com,
	freebsd-questions@freebsd.org
Subject: Re: Should DNS be on same server as webserver?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jul 2009 08:16:31 -0000

On Tue, Jul 14, 2009 at 12:46:43AM -0400, Steve Bertrand typed:
> John Almberg wrote:
> > On Jul 13, 2009, at 6:27 PM, Karl Vogel wrote:
> >>
> >>    You can fix the security problems by dumping Bind and using djbdns.

What security problems? This one ? :)
http://blogs.zdnet.com/security/?p=2812

> > I actually do use djbdns. Super easy to use, once you figure it out.
> 
> ...to run a DNS cache with djbdns, it doesn't take much figuring out:

(snipped rather long installation instructions)

To enable DNS cache with bind:

echo "named_enable=YES" >>/etc/rc.conf
/etc/rc.d/named start

Ruben