[ On Tuesday, May 23, 2000 at 19:31:13 (+0900), itojun@iijlab.net wrote: ]
> Subject: Re: have there been any "recent" resolver fixes?
>
> >I hate finding core files from system daemons.  I really hate it when
> >those daemons are listening for network connections.  I really really
> >really hate it when those daemons are running as root!  The only thing
> >worse could be finding an inetd.core....
> 
> 	in netbsd-current tree (main trunc), we have BIND 4.9.7 resolver in
> 	lib/libc/net imported recently.  rogue name server can confuse
> 	pre-4.9.7 resolver.  we may need to backport it to 1.4.x tree.

I'd be *MUCH* less worried if NetBSD were to adopt the BIND-8 resolver
library sooner rather than later.  Having done some work in the 4.9.7
resolver I can assure you that it wouldn't be hard to spend an entire
career fixing bugs in it and still not get them all -- at least not
without a rewrite.  Of course BIND-9's resolver is the real rewrite, but
in the mean time much was rewritten in BIND-8's resolver and it is in
much more maintainable shape.  I suppose given that BIND-9 is in early
release it wouldn't be impossible to go straight to it's resolver....

Yes, I know there are some "features" in the NetBSD resolver that some
folks seem to think they need.  Fortunately with nsswitch.conf most, if
not all, of those reasons are moot (if indeed they really are necessary
in the first place! ;-).

-- 
							Greg A. Woods

+1 416 218-0098      VE3TCP      <gwoods@acm.org>      <robohack!woods>
Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>