On Tue, Jul 3, 2012 at 9:39 PM, Doug Barton <do...@freebsd.org> wrote: > On 07/03/2012 05:39, Dag-Erling Smørgrav wrote: >> Doug Barton <do...@freebsd.org> writes: >>> The correct solution to this problem is to remove BIND from the base >>> altogether, but I have no energy for all the whinging that would happen >>> if I tried (again) to do that. >> >> I don't think there will be as much whinging as you expect. Times have >> changed. >> >> I'm willing to import and maintain unbound (BSD-licensed validating, >> recursive, and caching DNS resolver) if you remove BIND. > > You've got a deal! > > Unbound requires ldns, which is a good thing. Part of this project would
How's the security support for ldns / unbound? For third party software sitting in the 'frontline' that part is rather important. > also be to enable drill so that we have a command-line dns lookup tool > in the base, but that's trivial once you've got ldns imported. Does that means loosing host(1) ? That would be somewhat annoying. -- Simon _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
