HPE Community
Operating System - Linux
1824099 Members
3982 Online
109668 Solutions
New Discussion юеВ

dns servers -> linux or windows -> security difference

 
SOLVED
Go to solution
'chris'
Super Advisor

тАО11-27-2006 12:53 AM

тАО11-27-2006 12:53 AM

dns servers -> linux or windows -> security difference

hi

we are hosting our dns domains by nettica.com dns servers.
they are running under windows.
we have just been informed that nettica dns servers were currently being subject to a DDOS attack.
our webservers were unreachable.

is it security difference when dns servers running on windows instead of linux because of DDOS attack ?
or important is only the firewall in this case ?

kind regards
chris




0 Kudos
Reply
4 REPLIES 4
Ivan Ferreira
Honored Contributor

тАО11-27-2006 01:19 AM

тАО11-27-2006 01:19 AM

Solution

Re: dns servers -> linux or windows -> security difference

The "security" definition can be ambiguous. You cannot consider a Linux server more secure than a Windows server if is not monitored, protected and patched as needed.

Both can be as secure as your security practices.

I prefer Linux as DNS server because I prefer the management of servers via CLI. That allows me the access to servers remotelly even with ver low bandwith.

Also, the restore of a Linux DNS server in case of a cathastrophic failure is very simple.

Linux DNS server can run in chroot environment, a pretty nice feature for security. Virus for Linux is a little more difficult to find.

These are the reasons why I prefer Linux over Windows, but if you maintain a good security practice, you can use any of them.
Por que hacerlo dificil si es posible hacerlo facil? - Why do it the hard way, when you can do it the easy way?
Reply
Steven E. Protter
Exalted Contributor

тАО11-27-2006 02:25 AM

тАО11-27-2006 02:25 AM

Re: dns servers -> linux or windows -> security difference

Shalom

A system is only as secure as its configured to be. DNS was ported from Unix to Windows and I think its a better idea to run it on Linux or Unix.

Windows servers reliability record in this area has been less impressive than Unix/Linux. This service is in general a service that gets frequent exploits. Its necessary on either platform to insure that its properly patched.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
Heironimus
Honored Contributor

тАО11-27-2006 09:09 AM

тАО11-27-2006 09:09 AM

Re: dns servers -> linux or windows -> security difference

Depending on the magnitude of the DDoS it may not matter what platform you use for DNS or what kind of firewall you have. Any server or network link can be overwhelmed if you hammer it hard enough, and the nature of DDoS attacks is such that you can't simply deny a troublesome source IP.
Reply
Alpha977
Valued Contributor

тАО11-28-2006 12:19 AM

тАО11-28-2006 12:19 AM

Re: dns servers -> linux or windows -> security difference

Hello!

I think the difference is only the platform, Windows, Linux, Solaris etc etc.

I think the detter solution is OpenBSD with BIND, all behind a good firewall (like Checkpoint).
This solution i have try some years ago to a client and is still working yet.
With Windows AD and an hardware firewall i have some problems to make mail-server works.

Bye

Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.