On 03/08/2013 09:27 PM, Gaetan Bisson wrote:
Hi guys,
Currently we use the BIND code base in two packages:
- dnsutils from [core] provides basic DNS query tools;
- bind from [extra] is the actual name server.
...
We already have ldns in [core], a much better written (and sane) DNS
library which includes query tools that are near drop-in replacements
for BIND's: use `drill` instead of `dig`, etc.
Hi
One observation - bind is the de facto standard and as far as I
can tell used by the majority of the root servers [1] (and the majority
of all major DNS servers according to wikipedia [2] and bind website [3]
anyway :-)).
We may want to be cautious stepping away from the dominant DNS
software unless there is a sea change for the DNS community to do same.
A casual look around [4] - so clearly I am not in the know here
- but the rewrite seems not dissimilar to the postfix "re-write" of
sendmail - modularity and security seemingly key goals. [5]
Anyway, I'd encourage that we try and stick with bind.
gene
[1] http://en.wikipedia.org/wiki/Root_name_server
[2] http://en.wikipedia.org/wiki/BIND
[3] https://www.isc.org/wordpress/software/bind10/
[4] http://bind10.isc.org/wiki/DesignOverview
[5] I am not familliar with ldns or it's benefits - security or other so
I don't feel entitled to an opinion.
