Jump to content

BIND

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by Vickyrisk (talk | contribs) at 15:58, 25 September 2018 (Updated development release version to 9.13.3). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

BIND
Developer(s)Internet Systems Consortium
Stable release
9.12.2-P2 / September 19, 2018 (2018-09-19)[1]
Preview release
9.13.3 / September 19, 2018 (2018-09-19)[2]
Repository
Operating systemLinux, NetBSD, FreeBSD, OpenBSD, macOS, Windows
TypeDNS server
LicenseMozilla Public License (ISC license before 9.11[3])
Websitewww.isc.org/downloads/bind

BIND (/ˈbnd/), or named (pronounced name-dee, short for name daemon: /ˈnmd/), is the most widely used Domain Name System (DNS) software on the Internet.[4][5] | [6] On Unix-like operating systems it is the de facto standard.[7][8] It performs both of the main DNS server roles - acting as an authoritative name server for one or more specific domains, and acting as a recursive resolver for the DNS system generally.

The software was originally designed at the University of California, Berkeley (UCB) in the early 1980s. The name originates as an acronym of Berkeley Internet Name Domain,[9] reflecting the application's use within UCB. The software consists, most prominently, of the DNS server component, called named, a contracted form of name daemon. In addition the suite contains various administration tools, and a DNS resolver interface library. The latest version of BIND is BIND 9, first released in 2000. BIND 9 is actively maintained, with new releases issued several times a year.

Starting in 2009, the Internet Software Consortium (ISC) developed a new software suite, initially called BIND10. With release version 1.2.0 the project was renamed Bundy to terminate ISC involvement in the project.

Key Features

BIND 9 is intended to be fully compliant with the IETF DNS standards and draft standards. Important features of BIND 9 include: TSIG, nsupdate, IPv6, rndc (remote name daemon control), views, multiprocessor support, Response Rate Limiting (RRL), DNSSEC, and broad portability. rndc enables remote configuration updates, using a shared secret to provide encryption for local and remote terminals during each session.

Database support

While earlier versions of BIND offered no mechanism to store and retrieve zone data in anything other than flat text files, in 2007 BIND 9.4[10] DLZ provided a compile-time option for zone storage in a variety of database formats including LDAP, Berkeley DB, PostgreSQL, MySQL, and ODBC.

BIND 10 planned to make the data store modular, so that a variety of databases may be connected.[11] In 2016 ISC added support for the 'dyndb' interface, contributed by RedHat, with BIND version 9.11.0. [12]

Security

Security issues that are discovered in BIND 9 are patched and publicly disclosed in keeping with common principles of open source software. A complete list of security defects that have been discovered and disclosed in BIND9 is maintained by Internet Systems Consortium, the current authors of the software.[13]

The BIND 4 and BIND 8 releases both had serious security vulnerabilities. Use of these ancient versions, or any un-maintained, non-supported version is strongly discouraged.[14] BIND 9 was a complete rewrite, in part to mitigate these ongoing security issues. The downloads page on the ISC web site clearly shows which versions are currently maintained and which are end of life.

History

Originally written by four graduate students at the Computer Systems Research Group at the University of California, Berkeley (UCB), BIND was first released with Berkeley Software Distribution 4.3BSD. Paul Vixie started maintaining it in 1988 while working for Digital Equipment Corporation. As of 2012, the Internet Systems Consortium maintains, updates, and writes new versions of BIND.

BIND was written by Douglas Terry, Mark Painter, David Riggle and Songnian Zhou in the early 1980s at the University of California, Berkeley as a result of a DARPA grant. The acronym BIND is for Berkeley Internet Name Domain, from a technical paper published in 1984.[9]

Versions of BIND through 4.8.3 were maintained by the Computer Systems Research Group (CSRG) at UC Berkeley.[15]

In the mid-1980s, Paul Vixie of DEC took over BIND development, releasing versions 4.9 and 4.9.1. Paul Vixie continued to work on BIND after leaving DEC. BIND Version 4.9.2 was sponsored by Vixie Enterprises. Vixie eventually founded the ISC, which became the entity responsible for BIND versions starting with 4.9.3.[15]

BIND 8 was released by ISC in May 1997.[15]

Version 9 was developed by Nominum, Inc. under an ISC outsourcing contract, and the first version was released October 9, 2000.[16] It was written from scratch in part to address the architectural difficulties with auditing the earlier BIND code bases, and also to support DNSSEC (DNS Security Extensions). The development of BIND 9 took place under a combination of commercial and military contracts. Most of the features of BIND 9 were funded by UNIX vendors who wanted to ensure that BIND stayed competitive with Microsoft's DNS offerings;[citation needed] the DNSSEC features were funded by the US military, which regarded DNS security as important. BIND 9 was released in September 2000.[15]

In 2009, ISC started an effort to develop a new version of the software suite, called BIND10. In addition to DNS service, the BIND10 suite also included IPv4 and IPv6 DHCP server components. In April 2014, with the BIND10 release 1.2.0 the ISC concluded its development work of the project and renamed the project Bundy, moving the source code repository to GitHub for further development by outside public efforts.[17] Bundy is community-supported at the web site http://bundy-dns.de/. ISC discontinued its involvement in the project due to cost-cutting measures.[18] The development of DHCP components was split off to become a new Kea project.

See also

References

  1. ^ McNally, Michael (19 September 2018). "New BIND releases are available -- 9.11.4-P2, 9.12.2-P2, and 9.13.3". bind-announce (Mailing list). Retrieved 20 September 2018.
  2. ^ McNally, Michael (19 September 2018). "New BIND releases are available -- 9.11.4-P2, 9.12.2-P2, and 9.13.3". bind-announce (Mailing list). Retrieved 20 September 2018.
  3. ^ "LICENSE in Bind 9.11 branch".
  4. ^ "BIND - The most widely used Name Server Software". Internet Systems Consortium. 2015-09-08. Retrieved 2015-09-17.
  5. ^ Don Moore (2004-05-23). "DNS server survey". Retrieved 2015-09-17.
  6. ^ Geoff Huston (October 2015). "Happy Eyeballs for the DNS, (see slide 37)" (PDF). APNIC. Retrieved 2018-07-10.
  7. ^ Paul E. Huck, Jr. (June 2001). "Zero Configuration Name Services for IP Networks". Massachusetts Institute of Technology. Retrieved 2018-06-28.
  8. ^ Rohit G. Bal (Jan 2017). "Local Area Network automatic Domain name System (LANDS)". Nepal Engineering College. Retrieved 2018-06-28.
  9. ^ a b Douglas B. Terry; Mark Painter; David W. Riggle; Songnian Zhou (May 1984). "The Berkeley Internet Name Domain Server". EECS Department, University of California, Berkeley, Technical Report No. UCB/CSD-84-182. Retrieved 2015-09-17. {{cite web}}: Unknown parameter |last-author-amp= ignored (|name-list-style= suggested) (help)
  10. ^ Mark Andrews (2007-02-24). "BIND 9.4.0 is now available". Retrieved 2015-09-17.
  11. ^ "Kea: Design overview". ISC. Retrieved 2015-09-17.
  12. ^ https://kb.isc.org/article/AA-01420/219/What-is-dyndb-and-how-is-it-better-than-DLZ.html
  13. ^ Conry, Brian (2015-11-12). "BIND 9 Security Vulnerability Matrix". Internet Systems Consortium. Retrieved 2015-11-12.
  14. ^ P. Hudson, A. Hudson, B. Ball, H. Duff: Red Hat Fedora 4 Unleashed, page 723. Sams Publishing, 2005 ISBN 0-672-32792-9
  15. ^ a b c d ISC (2016-10-31). "History of BIND". Retrieved 2017-08-10.
  16. ^ "BIND 9 Authored by Nominum Development Team Now Available on Internet Software Consortium Site". 2000-10-06. Retrieved 2015-09-17.
  17. ^ "BIND 10 Release 1.2 available". 2014-04-17. Retrieved 2015-09-17.
  18. ^ "ISC releases BIND 10 1.2, renames it, and turns it over to community". Linux Weekly News. 2014-04-17. Retrieved 2015-09-17.

Further reading