On Sun, Dec 4, 2011 at 6:17 PM, Matus UHLAR - fantomas <[email protected]> wrote:
>> | -d Dump all zones to stdout in BIND format and exit. This may be >> >> That's what we use for the BIND export of dnswl.org data (create >> rbldnsd-formatted file, and let rbldnsd -d create the BIND file). > > hmmm didn't know about this one. But don't you think it's worth it? rbldnsd > can automatically reread data files when they change, and takes up much less > memory. I don't think TCP is that important for this kind of service... Memory consumption for the relatively modest-sized dnswl.org data is not really an issue, as is the automatic rereading for the data that changes slowly (yes, it's different for a typical blacklist). The reason to use BIND vary with the use case. Corporate environments may be fine with running some version of BIND (and they may be doing that already), but may not want to invest in getting rbldnsd up and running in production quality. For our own purpose, having more than only rbldnsd serves to mitigate the (security-) risks of a monoculture. As this is getting heavily off-topic for this list, please take responses off-list. -- Matthias
