> Also, BIND 8.2.3 and 9.1.0 are easily available from the packages
> collection.

Still:
1) All packages are built by root, aren't they?  I should think someone
   truly concerned about security would build daemons like bind as an
   unprivileged user.  Sometimes I question the advisability of even
   putting such things in pkgsrc.
2) The general recommendation for bind is to run it as an unprivileged
   user:group.  Perhaps default flags -u and -g should be written into
   /etc/rc.conf in line with a pseudouser and group that the packager
   sets up.

henry nelson