Does it make sense to run BIND/NAMED with DNS over TLS (DoT) for a server?
not sure if I understand the infrastructure, I know it makes sense for home clients, but does it as well for servers?
In ubuntu 22.04 there is a compatible version already, in alma/rhel it is not yet updated.
I tried the DoT instead of DoH, as apache is on 443 too.
It’s quite early for that. We won’t try to support it until it has widespread adoption.
The benefits for servers are pretty minimal, I think. On the list of things one can do to improve server security, this is so far down the list (at least the list I would make), most people would never get to it because they just don’t have that kind of time to devote to server administration tasks.
Once it’s widely available, I’m sure we’ll get around to supporting it in some way (Jamie likes DNS and implementing DNS features).
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.