1
--- maradns-1.3.07.04/doc/en/webpage/advocacy.embed 2007-05-21 06:37:54.000000000 -0500
2
+++ maradns-1.3.07.05/doc/en/webpage/advocacy.embed 2007-09-20 21:20:13.000000000 -0500
4
<li><A href="#posadis">Posadis</A>
5
<li><A href="#pdnsd">Pdnsd</A>
6
<li><A href="#dents">Dents</A>
7
+<li><A href="#mydns">MyDNS</A>
8
<li><A href="#etc">Other abandoned DNS servers</A>
9
<li><A href="#bind9">BIND version 9</A>
10
<li><A href="#oldbind">Older versions of BIND</A>
12
very quickly. This will not be addressed until I adress the issue
13
with recursive threads.
15
-<li>MaraDNS currently does not have support for BIND zone files. I have
16
- been working on this on and off for a few months; I am about
17
- to start work on this again and MaraDNS should have BIND zone file
18
- support in a month or two. <p>
20
- The way this will be implemented is to have both support for a zone
21
- file format that is mostly like BIND's, and a Python script to convert
22
- from BIND's zone file format to MaraDNS' zone file format. All of the
23
- code for MaraDNS' BIND-like zone file format has been finished; now all
24
- I have to do is finish the Python script.
25
+<li>MaraDNS has support for BIND zone files only in the beta-test
26
+ branch, using a Python script to convert zone files from BIND's format
27
+ to MaraDNS' BIND-like format.
30
Many, many DNS server projects have come and gone over the years; to
32
was superior to MaraDNS' 1.0 zone file format. It also has some graphical
33
programs which MaraDNS doesn't have at all. Alas, there have been some
34
problems with the program crashing, and some serious security problems with
35
-the underlying code. The program does not appear to be actively developed
36
-any more, so these problems may never be resolved.
37
+the underlying code. The last release for this program was in 2004,
38
+so these problems will probably never be resolved.
43
Pdnsd is an excellent little caching name server that predates MaraDNS.
44
Years ago, the principal author stopped actively maintaining Pdnsd.
45
Another person is currently maintaining Pdnsd; the last release was
46
-done fairly recently. I have heard that pdnsd has some stability problems.
47
+done in the fall of 2006. I have heard that pdnsd has some stability
53
and stopped developing. It was not a usable DNS server when this
56
+<A name="mydns"> </A>
59
+MyDNS is a one-trick-pony DNS server, which allows people to convert
60
+information from a MySQL database in to DNS records. The last release was
61
+in January of 2006. People who want to use a SQL database with DNS are
62
+probably better off using PowerDNS.
66
Djbdns has enough issues that I have <A href="#djbdns">an entire section</A>
68
BIND, to its credit, does have a number of features which I haven't
69
yet implemented in MaraDNS. BIND supports standard RFC-compliant zone
70
files. While MaraDNS' csv2 zone file format is mostly BIND-like, there
71
-are differences that make the two zone files incompatible. I am
72
-writing a converter and MaraDNS will soon have full RFC
73
+are differences that make the two zone files incompatible. I have
74
+written a converter and MaraDNS, in the beta-test branch, has BIND
75
zone file support. BIND, of course, also has full support for being
76
a DNS slave, including NOTIFY and IXFR support--features which I may
77
eventually add to MaraDNS.
79
a drop-in replacment. Like BIND, NSD has a cryptic configuration
80
format. There does not appear to be any reported security problems
81
with NSD, but, then again, making a secure authoritative-only DNS server
82
-is easier thank making a secure authoritative + recusive DNS server.
83
+is easier than making a secure authoritative + recusive DNS server.
90
<li>There are problems resolving some domains with DjbDNS' resolver. This
91
- is the 'akamai djbdns' problem.
92
+ is the 'akamai djbdns' problem.
93
+<sup><font size=-2><A href="http://marc.theaimsgroup.com/?l=djbdns&m=113733374006571">ref</A></font></sup>
94
<li>DjbDNS does not correctly periodically check upstream DNS servers to
95
make sure a given domain has not moved.
96
+<sup><font size=-2><A href="http://marc.info/?l=djbdns&m=113898636032186&w=2">ref</A></font></sup>
97
<li>The list of root servers included with DjbDNS is out of date.
98
+<sup><font size=-2><A href="http://securepoint.com/lists/html/djbdns/2007-03/msg00001.html">ref</A></font></sup>
99
<li>DjbDNS can not compile in Linux without using a special
102
+<sup><font size=-2><A href="http://djbware.csi.hu/patches/djbdns-1.05.errno.patch">patch</A></font></sup>
103
<li>There is a denial of service problem where a remote attacker can
104
clear DjbDNS' recursive cache by sending a single "packet of death"
105
to a dnscache server.
106
+<sup><font size=-2><A href="http://marc.info/?l=djbdns&m=104796742521473&w=2">ref</A>
107
+<A href="http://marc.info/?l=djbdns&m=104804013229536&w=2">patch</A></font></sup>
110
-Installing djbdns is non-trivial; you need to download and install no
111
-less than three different packages. Djbdns will not even compile on a
112
-modern Linux system without knowing the incantation to make it compile.
113
-Compare this to MaraDNS, where installing is as simple as downloading
114
-one package and typing in "make; make install", or downloading a binary
115
-package (packages are available for RedHat/CentOS, Debian, FreeBSD,
116
-NetBSD, Slackware, Windows, and probably other systems).
117
+Installing djbdns is non-trivial; you need to either download and install
118
+no less than three different packages, or hunt on the internet for the
119
+non-official way to install djbdns using less packages. Djbdns will not
120
+even compile on a modern Linux system without knowing the incantation
121
+to make it compile. Compare this to MaraDNS, where installing is as
122
+simple as downloading one package and typing in "make; make install", or
123
+downloading a binary package (packages are available for RedHat/CentOS,
124
+Debian, FreeBSD, NetBSD, Slackware, Windows, and probably other systems).