Secure your DNS - replace BIND

Wednesday, 5 February 2003, 1:10 PM EST

If you're running BIND on Linux/UNIX for your DNS services, you're likely familiar with the potential security implications. Although BIND is an excellent choice for many organisations, those looking for a DNS server with security included from the ground up might want to consider the djbdns package.

What is djbdns?

Djbdns is a true replacement for BIND, with none of the latter's security baggage. In fact, the developer of djbdns, Dan Bernstein, offers a $500 reward for the first person who can legitimately compromise the product. Because djbdns was written with security in mind, he feels that his money is safe.

In addition to the focus on security, the product runs inside a chroot jail as a nonroot user. A chroot jail locks users into a specific directory structure without any access to files not explicitly allowed by the administrator.

[ Read more ]




Spotlight

Successful strategies to avoid frequent password changes

Posted on 19 August 2014.  |  After a widespread, nonspecific data breach, the conventional wisdom is that people should change all their passwords. But, there’s a better way.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Wed, Aug 20th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //