One day I told my boss "you just stick to being my boss, and I will figure out the technical details". Hosts files are now troubleshooting tools or props for when things are not properly configured and you need to "patch" them. If your description of your boss' reasons for using hosts files as DNS-helpers is accurate, then please tell your boss to (at the risk of physical assault) step as far away as humanly possible from your AD environment. Sincerely,
D�j� Ak�m�l�f�, MCSE+M MCSA+M MCP+I Microsoft MVP - Directory Services www.readymaids.com - we know IT www.akomolafe.com Do you now realize that Today is the Tomorrow you were worried about Yesterday? -anon ________________________________ From: [EMAIL PROTECTED] on behalf of Dan DeStefano Sent: Thu 5/5/2005 1:45 PM To: [email protected] Subject: RE: [ActiveDir] DNS vs. Hosts File Well, he said that he wanted it on domain controllers so that if DNS goes down that people can still log on. But that is not the case, right? People can logon to a DC in AD as long as that DC can query a GC, right? ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Douglas M. Long Sent: Thursday, May 05, 2005 4:36 PM To: [email protected] Subject: RE: [ActiveDir] DNS vs. Hosts File Did you ask him if you could have the host file on his machine... that he MUST be using to browse the web with? DNS untrustworthy vs host file... bahaha ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan DeStefano Sent: Thursday, May 05, 2005 4:24 PM To: [email protected] Subject: [ActiveDir] DNS vs. Hosts File Recently, one of my colleagues and I got into a discussion about DNS vs. hosts files in AD. He has configured the hosts file on all of our domain controllers (Windows 2000 AD in native mode) to point to other DCs. One of our DCs was moved to another site and the hosts file on a DC was not changed to point to the moved DC on its new subnet - this obviously resulted in NTFRS errors. Anyway, after this I got into a discussion with my boss about the need of the hosts file in AD. It is my position that the hosts file is no longer necessary and should not really be used in AD and is only included for backward-compatibility, testing and for certain special instances. It is his position that DNS is untrustworthy and that the hosts file should be configured as a backup in case DNS goes down. My response to this was twofold - 1. the hosts file is queried before DNS so it is not really a backup, it is a primary method of name-resolution, plus, it does not support SRV records; 2. DNS is the foundation of AD and if it goes down, AD will not work correctly anyway. Plus, that is the reason for secondary DNS servers, of which we have several. Could anyone point to any documentation that discusses the role of the hosts file in AD and also include your own opinions and comments. _________________________ Daniel DeStefano PC Support Specialist IAG Research 345 Park Avenue South, 12th Floor New York, NY 10010 T. 212.871.5262 F. 212.871.5300 www.iagr.net <http://www.iagr.net/> Measuring Ad Effectiveness on Television The information contained in this communication is confidential, may be privileged and is intended for the exclusive use of the above named addressee(s). If you are not the intended recipient(s), you are expressly prohibited from copying, distributing, disseminating, or in any other way using any of the information contained within this communication. If you have received this communication in error, please contact the sender by telephone 212.871.5262 or by response via e-mail. List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
