Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: rarestia
If MS DNS is implemented properly, it’s as secure as BIND. Most admins deploy MS DNS with secure updates turned off and zone transfers enabled from all sources, which is just a nightmare for administration and security overall.

This. Lazy admins take the shotgun approach. Not smart.

13 posted on 07/02/2013 9:48:33 AM PDT by Noumenon (What would Michael Collins do?)
[ Post Reply | Private Reply | To 8 | View Replies ]

To: Noumenon

When it comes to high-level domain infrastructure, implementation should be surgical.

MS infrastructure is my expertise. My last few jobs I’ve been hired to “clean up” implementations, esp. post-Novell migrations, and I’ve yet to come across a company that does it correctly.

Engineers don’t like to document and scope everything, so the installation usually goes full-default and it’s just a mess. DNS is no exception.


14 posted on 07/02/2013 9:54:18 AM PDT by rarestia (It's time to water the Tree of Liberty.)
[ Post Reply | Private Reply | To 13 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson