README revision 27f61f54eb79881fc394f287b8bf0842681c7b04
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley XXX Introduction XXX
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley BIND 9.0.0b1 is the first public release of BIND 9 code. It will
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley be most useful to advanced users working with IPv6 or DNSSEC.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley BIND 9.0.0b1 is not functionally complete, and is not a release
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley candidate for BIND 9.0.0. The ISC anticipates a number of additional
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley beta releases between now and May, when BIND 9.0.0 is scheduled to
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley be released.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley The ISC does not recommend using BIND 9.0.0b1 for "production"
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Much of the core technology planned for BIND 9.0.0 is in this beta
27f61f54eb79881fc394f287b8bf0842681c7b04Bob Halley release. Some of the highlights are:
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Support for bitstring labels, DNAME, and A6 records.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley IPv6-aware resolver (follows A6 chains, can use IPv6 to
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley talk to other nameservers).
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley The nameserver listens on an IPv6 socket.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley All new RR types supported.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley The server generates DNSSEC responses for secure zones.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley DNS messages using UDP have been limited to 512
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley bytes. This is too small for DNSSEC replies, whose
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley signature and key records can be large. EDNS0 allows
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley larger UDP messages to be sent.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley EDNS0 is understood by the server, and used by the
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Some of the more significant items that will be implemented or
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley enhanced in a future beta are
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley DNSSEC validation
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley The server does not currently validate DNSSEC
3a481d0d4a73e3baec3da25ca0f9d079fd74076fBob Halley Notify is not yet implemented.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Configuration File
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Some config file items are not yet implemented.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley See doc/misc/options for a summary of the current
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Selective Forwarding
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Documentation
8db66dc4eb654a2e295eaeab3aaf96e24c9ae7b7Bob Halley BIND 9 currently requires a UNIX system with an ANSI C compiler,
8db66dc4eb654a2e295eaeab3aaf96e24c9ae7b7Bob Halley basic POSIX support, and a good pthreads implementation.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley We've had successful builds and tests on the following systems
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley COMPAQ Tru64 UNIX 4.0D
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley NetBSD 1.4.1
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Red Hat Linux 6.0, 6.1
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Solaris 2.6, 7, 8 (beta)
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley To build, just
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley "make install" will install "named" and the various BIND 9 libraries.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley By default, installation is into /usr/local, but this can be changed
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley with the "--prefix" option when running "configure".
8db66dc4eb654a2e295eaeab3aaf96e24c9ae7b7Bob Halley Shared libraries will be built if "--with-libtool" is added to the
8db66dc4eb654a2e295eaeab3aaf96e24c9ae7b7Bob Halley "configure" command.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Building with gcc is not supported, unless gcc is the vendor's usual
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley compiler (e.g. the various BSD systems, Linux).
36983956d7c3d9e294903eeda29548f67ac17daeBob HalleyBug Reports and Mailing Lists
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Bugs reports should be sent to
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley bind9-bugs@isc.org
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley To join the BIND 9 Users mailing list, send mail to
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley bind9-users-request@isc.org
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley If you're planning on making changes to the BIND 9 source
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley code, you might want to join the BIND 9 Workers mailing list.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Send mail to
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley bind9-workers-request@isc.org
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley"named" command line options
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley -c <config_file>
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley -d <debug_level>
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley -f Run in the foreground.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley -N <number_of_cpus>
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley -t <directory> Chroot to <directory> before running.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley -u <username> Run as user <username> after binding
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley to privileged ports.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley Use of the "-t" option while still running as "root" doesn't
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley enhance security on most systems. The way chroot() is defined
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley allows a process with root privileges to escape the chroot jail.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley The "-u" option is not currently useful on Linux. Linux threads
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley are actually processes sharing a common address space. An unfortunate
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley side effect of this is that some system calls, e.g. setuid() that
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley in a typical pthreads environment would affect all threads only affect
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley the calling thread/process on Linux. The good news is that BIND 9
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley uses the Linux kernel's capability mechanism to drop all root
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley powers except the ability to bind() to a privileged port.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley On systems with more than one CPU, the "-N" option should be used
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley to indicate how many CPUs there are.
36983956d7c3d9e294903eeda29548f67ac17daeBob HalleyNote to Programmers
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley The APIs for the libraries in BIND 9 are not yet frozen.
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley We expect the existing library interfaces in the release to be
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley quite stable, however, and unless we've specifically indicated that
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley an interface is temporary, we don't anticipate major changes in
36983956d7c3d9e294903eeda29548f67ac17daeBob Halley future releases.