Self-hosted DNS server

Discussion in 'Server Operation' started by Michael_BoG, May 4, 2011.

  1. Michael_BoG

    Michael_BoG New Member

    Hi. I read somewhere (I'll see if i can find the link) that hosting BIND on a server with alot of other services (mail, www, things like that) is a bad idea?
    Is this true or is it false? My server is a dual Xeon with 12GB ram, so more than enough hardware for it.
     
  2. Ben

    Ben ISPConfig Developer ISPConfig Developer

    It's not generally the problem to mix bind with other services.

    The point is more, that the more services you generally have, the bigger is your potential attack surface.

    Despite that bind hat some vulnerabilities in the past and still has from time to time (like other's do as well). So if you do not have this service running on the same machine, just make sure to configure is at safe as possible, e.g. jail it etc.
     

Share This Page