[nsp-sec] Issues with BIND patching..
Florian Weimer
fweimer at bfk.de
Wed Jul 9 10:52:15 EDT 2008
* Huopio Kauto:
> Actually got a confirmation already.
>
> "Yes, we tried 9.4.2-P1, 9.5.0-P1 ja 9.5.1b1". None of them
("ja" == "and")
The -P1 versions are expected to suffer from some performance issues.
> couldn't cope with the production level query load. "
Which version was used before? 9.5 contains extensive memory
management changes, so 9.4.3b2 might be closer to what's currently
running.
(They could also try Unbound, with the CNAME and QTYPE-specific
lameness patches from Subversion if they are really desperate.
Unbound uses epoll/kqueue should cope a bit better with the many-ports
situation.)
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the nsp-security
mailing list