Secure your DNS - replace BIND

Wednesday, 5 February 2003, 1:10 PM EST

If you're running BIND on Linux/UNIX for your DNS services, you're likely familiar with the potential security implications. Although BIND is an excellent choice for many organisations, those looking for a DNS server with security included from the ground up might want to consider the djbdns package.

What is djbdns?

Djbdns is a true replacement for BIND, with none of the latter's security baggage. In fact, the developer of djbdns, Dan Bernstein, offers a $500 reward for the first person who can legitimately compromise the product. Because djbdns was written with security in mind, he feels that his money is safe.

In addition to the focus on security, the product runs inside a chroot jail as a nonroot user. A chroot jail locks users into a specific directory structure without any access to files not explicitly allowed by the administrator.

[ Read more ]




Spotlight

Proactive real-time security intelligence: Moving beyond conventional SIEM

Discussions about security intelligence still focus primarily around conventional reactive SIEM. Security pros need to move from this reactive model to proactively using this security intelligence to protect their businesses.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Mon, Aug 31st
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //