This is a multi-part message in MIME format. ------=_NextPart_000_0012_01C162D4.24DD3470 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit You all rule! (about 28 so far) General consensus is MSDNS is broken (sucks, crappy, bad idea) UNIX bind 9.x is capable of all the "extensions" that M$ has implemented, but UNIX isn't broken. So I *can* use DHCP with bind 9.x and have the clients dynamically update the DNS records, but I should/will not implement that headache. According to your many great suggestions, doing so will most likely allow the windows clients to break the DNS server and open up security holes. Many people mentioned that they are doing this right now and it works fine. Following is a "sum up" of the replies I got; Solaris/UNIX has less dependencies than M$ DNS All windows clients require is dynamic updates, which BIND 9 supports. (Not recommended) What the hell are you thinking (running critical apps on windows) M$ is Non-Standard Stability Some Solaris programs that rely on DNS do not work properly with MSDNS MSDNS is not able to use wildcards like BIND can Security Letting windows clients register their connection is insecure and unnecessary UNIX bind is less susceptible to DNS spoofing attacks because of BIND allowing signed zone transfers and using non-predictable DNS query ID's If your company uses AD with DNS and/or exchange, your screwed (I'm screwed) You should set up sub-domains and point child DNS servers for each sub-domain to a master MSDNS server Reliability Look at MS knowledge base for DNS and count the number of resolutions that involve restarting the DNS service. Even an AD course instructor recommends staying away from MSDNS because it is too flaky And I quote, "Average uptime here for Windows servers: 14 days. Average uptime here for UNIX: 340 days." Try "Network Registra" from Cisco There were too many people to mention but every response was/is greatly appreciated and very helpful. If I can elaborate further for anyone what I learned, please let me know. Thanks, Dave Baldwin RHCE, UNIX System Administrator NOC Engineer Network Insight, LLC www.networkinsight.com Main: 858-450-1180 Direct: 858-362-8294 Mobile: 619-726-5485 P.S. About the politics, everyone basically recommended to just do my job and not bother. Thanks again ------=_NextPart_000_0012_01C162D4.24DD3470 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIJATCCApAw ggH5oAMCAQICAwX92TANBgkqhkiG9w0BAQIFADCBkjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdl c3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsT FENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAw MC44LjMwMB4XDTAxMTAzMTE0MDM1NloXDTAyMTAzMTE0MDM1NlowTTEfMB0GA1UEAxMWVGhhd3Rl IEZyZWVtYWlsIE1lbWJlcjEqMCgGCSqGSIb3DQEJARYbZGJhbGR3aW5AbmV0d29ya2luc2lnaHQu Y29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1vMER8c/lrP/3ltNWfyYBpAjqH4xHla7L s1ggJlSK8S7KmTY49HGzD094I1nfW/cevytsx/Y8sXH7/g+A+Trs5ZTWEUMjKRE2GaE/tBFLUpkt JVb2s3aE3CHFvZbHRob77qi9SyVdtqg/4pJcaogZaI4k7vaPv/CldsSa6rWdIwIDAQABozgwNjAm BgNVHREEHzAdgRtkYmFsZHdpbkBuZXR3b3JraW5zaWdodC5jb20wDAYDVR0TAQH/BAIwADANBgkq hkiG9w0BAQIFAAOBgQAo0VWtoRYD1qkXeQGWyQJ9PJIwmucbLKBp8oQ48J14Jvqp3ai6e0ZNm7rf ZqX4NwuiBay+DFN1lu8AX+9fkNYwKa/r3W63ywhelKa6oqt5VC+jxi0OAchRNRHCqAAYNeigF5Ri 9LWNUwI27wlReOABb94IG/9QZ6otDv98tmPfHjCCAy0wggKWoAMCAQICAQAwDQYJKoZIhvcNAQEE BQAwgdExCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNhcGUg VG93bjEaMBgGA1UEChMRVGhhd3RlIENvbnN1bHRpbmcxKDAmBgNVBAsTH0NlcnRpZmljYXRpb24g U2VydmljZXMgRGl2aXNpb24xJDAiBgNVBAMTG1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBDQTEr MCkGCSqGSIb3DQEJARYccGVyc29uYWwtZnJlZW1haWxAdGhhd3RlLmNvbTAeFw05NjAxMDEwMDAw MDBaFw0yMDEyMzEyMzU5NTlaMIHRMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBDYXBl MRIwEAYDVQQHEwlDYXBlIFRvd24xGjAYBgNVBAoTEVRoYXd0ZSBDb25zdWx0aW5nMSgwJgYDVQQL Ex9DZXJ0aWZpY2F0aW9uIFNlcnZpY2VzIERpdmlzaW9uMSQwIgYDVQQDExtUaGF3dGUgUGVyc29u YWwgRnJlZW1haWwgQ0ExKzApBgkqhkiG9w0BCQEWHHBlcnNvbmFsLWZyZWVtYWlsQHRoYXd0ZS5j b20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBANRp19SwlGRbcelH2AxRtupykbCEXn0tDY97 Et+FJXUodDpCLGMnn5V7S+9+GYcdhuqj3bnOlmQawhRuRKx85o/oTQ9xH0A4pgCjh3j2+ZSGXq3q wF5269kUo11uenwMpUtVfwYZKX+emibVars4JAhqmMex2qOYkf152+VaxBy5AgMBAAGjEzARMA8G A1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEEBQADgYEAx+ySfk749ZalZ2IqpPBNEWDQb41gWGGs JrtSNVwIzzD7qEqWih9iQiOMFw/0umScF6xHKd+dmF7SbGBxXKKs3Hnj524ARx+1DSjoAp3kmv0T 9KbZfLH43F8jJgmRgHPQFBveQ6mDJfLmnC8Vyv6mq4oHdYsM3VGEa+T40c53ooEwggM4MIICoaAD AgECAhBmRXK3zHT1z2N2RYTQLpEBMA0GCSqGSIb3DQEBBAUAMIHRMQswCQYDVQQGEwJaQTEVMBMG A1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xGjAYBgNVBAoTEVRoYXd0ZSBD b25zdWx0aW5nMSgwJgYDVQQLEx9DZXJ0aWZpY2F0aW9uIFNlcnZpY2VzIERpdmlzaW9uMSQwIgYD VQQDExtUaGF3dGUgUGVyc29uYWwgRnJlZW1haWwgQ0ExKzApBgkqhkiG9w0BCQEWHHBlcnNvbmFs LWZyZWVtYWlsQHRoYXd0ZS5jb20wHhcNMDAwODMwMDAwMDAwWhcNMDQwODI3MjM1OTU5WjCBkjEL MAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8w DQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9Q ZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAwMC44LjMwMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKB gQDeMzKmY8cJJUU+0m54J2eBxdqIGYKXDuNEKYpjNSptcDz63K737nRvMLwzkH/5NHGgo22Y8cNP omXbDfpL8dbdYaX5hc1VmjUanZJ1qCeu2HL5ugL217CR3hzpq+AYA6h8Q0JQUYeDPPA5tJtUihOH /7ObnUlmAC0JieyUa+mhaQIDAQABo04wTDApBgNVHREEIjAgpB4wHDEaMBgGA1UEAxMRUHJpdmF0 ZUxhYmVsMS0yOTcwEgYDVR0TAQH/BAgwBgEB/wIBADALBgNVHQ8EBAMCAQYwDQYJKoZIhvcNAQEE BQADgYEAMbFLR135AXHl9VNsXXnWPZjAJhNigSKnEvgilegbSbcnewQ5uvzm8iTrkfq97A0qOPdQ Vahs9w2tTBu8A/S166JHn2yiDFiNMUIJEWywGmnRKxKyQF1q+XnQ6i4l3Yrk/NsNH50C81rbyjz2 ROomaYd/SJ7OpZ/nhNjJYmKtBcYxggNpMIIDZQIBATCBmjCBkjELMAkGA1UEBhMCWkExFTATBgNV BAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAb BgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBS U0EgMjAwMC44LjMwAgMF/dkwCQYFKw4DAhoFAKCCAiQwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMDExMTAxMjA1MzAzWjAjBgkqhkiG9w0BCQQxFgQUuyKOO/u6EJ2U qBUrXKLztFWMGMcwZwYJKoZIhvcNAQkPMVowWDAKBggqhkiG9w0DBzAOBggqhkiG9w0DAgICAIAw DQYIKoZIhvcNAwICAUAwBwYFKw4DAgcwDQYIKoZIhvcNAwICASgwBwYFKw4DAhowCgYIKoZIhvcN AgUwgasGCSsGAQQBgjcQBDGBnTCBmjCBkjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4g Q2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsTFENlcnRp ZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAwMC44LjMw AgMF/dkwga0GCyqGSIb3DQEJEAILMYGdoIGaMIGSMQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2Vz dGVybiBDYXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xDzANBgNVBAoTBlRoYXd0ZTEdMBsGA1UECxMU Q2VydGlmaWNhdGUgU2VydmljZXMxKDAmBgNVBAMTH1BlcnNvbmFsIEZyZWVtYWlsIFJTQSAyMDAw LjguMzACAwX92TANBgkqhkiG9w0BAQEFAASBgKgP32tSb3S9MQLh3Al+xKyzrVPw8htqNQ2vLe2/ pmeBZhcieffuUGpQJJ57bEfvvymk8GqMigesJpb/cnyHhHYpoEMexsY5C0Ps5lldcb5gkTlHnABx x9h7z4wlhQHzNWDDdgk6VO+j/nD2GnHVIq3vrdDVoI5mb6JvYL2DimXtAAAAAAAA ------=_NextPart_000_0012_01C162D4.24DD3470--Received on Thu Nov 1 20:53:04 2001
This archive was generated by hypermail 2.1.8 : Wed Mar 23 2016 - 16:32:34 EDT