BIND: limiting recursion just might make things harder for spammers
Chuck Yerkes
chuck+baylisa at snew.com
Sun Nov 17 19:16:36 PST 2002
BIND 9 good.
BIND 9 friend.
Chuck like BIND 9.
That said, BIND 4 is faster than BIND 8 is faster than BIND 9.1.x was.
At least on single CPU machines. Measurements were in an excessively
high volume mail situation (100's of thousands/hour). Not spam :)
Quoting Rick Moen (rick at linuxmafia.com):
> Quoting Dmitry Kohmanyuk (dk at farm.org):
>
> > Not sure that FreeBSD -stable has latest bind since the 8.3.4 release
> > promised last week as a remedy for this problem only appeared on
> > ftp.isc.org on today's night:
>
> Note that FreeBSD-stable (4.7) has BIND 9.2.1 as a package -- in
> addition to the vulnerable 8.3.3 package. The security advisory was
> (predictably enough) for BIND4/BIND8, not the BIND9 from-scratch
> rewrite. If anyone has a compelling reason to run BIND8 on *ix at this
> late date, I haven't heard it (well, except your zonefiles being so
> syntax-error-ridden that BIND9 rejects them).
>
> There are also packages for Maradns 1.0.06 and Mydns 0.9.1, either of
> which one might reasonable consider, instead.
>
> --
> Cheers, "Reality is not optional."
> Rick Moen -- Thomas Sowell
> rick at linuxmafia.com
More information about the Baylisa
mailing list