[PLUG] Re: [PLUG-WEB] [PLUG Website 0000018]: DNS configuration is not up to par

Karl M. Hegbloom karlheg at pdxlinux.org
Fri Jan 10 19:32:02 UTC 2003


On Fri, 2003-01-10 at 18:27, Carla Schroder wrote:
> On Friday 10 January 2003 05:16 pm, Ed Sawicki wrote:
> > > Oh, ok.  Hmm.. I don't see why that would be a problem.  I have a
> > > corporate setup where the external DNS server was tinydns and axfrdns
> > > with ACL's to allow Sprint secondaries to pull zone files.  Worked like
> > > a charm.
> >
> > Yes, of course it works well. Many of us are doing the same thing.
> > I think the issue was tinydns and axfrdns not supporting the
> > TSIG and/or DNSSEC.
> 
> So what's this mean in the real world? My cranky DNS guru, who uses djbdns, 
> likes to rant about what a horrid hack TSIG is, and he doesn't think much of 
> DNSSEC either. Are they necessary for DNS to work, or are they lame BIND 
> hacks, as the aforementioned cranky guru says?

My experience is that "cranky gurus" don't like fancy new things like
that simply because they don't understand the problem or the solution
very well and are too lazy to read up on it.






More information about the PLUG mailing list