Replacing BIND with unbound
Dag-Erling Smørgrav
des at des.no
Mon Jul 9 13:36:42 UTC 2012
Matt Dawson <matt at chronos.org.uk> writes:
> TBH, even having the root zone in base is a bit daft.
The root zone we ship is a hint used to bootstrap named. Without it,
named is a brick, unless all you want is an authoritative-only
nameserver. All named does with that hint file is use it to locate a
root server from which it can obtain a fresh copy of the root zone.
Feel free to replace it with a fresh copy from InterNIC. Since the root
zone is signed, you could even set up a cron job to do automatically
update the hint file at regular intervals.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list