[snip]
> The real issue of being a good sysadmin or security admin is
> to ensure that
> you are running a good version implementation of BIND, since
> it is one of
> the many typical services that could be exploited by "would
> be" intruders
> and then gain access to an organization's goodies.
Which is a good reason _not_ to run BIND, IMO.
> It is
> also an essential
> service to be running internally and externally at an
> organization. So
> therefore a good sysadmin has to be very fluent in BIND or at least
> dangerous enough to basically kill an organization's access
> to the Internet.
>
> www.acmebw.com
For bastion hosts, I like djbdns - by DJ Bernstein (author of qmail).
http://cr.yp.to
Cheers,
--
Ben Nagy
Network Consultant, Volante Solutions
PGP Key ID: 0x1A86E304 Mobile: +61 414 411 520
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
