IMHO, that depends on what you favour: a relatively bloated piece of software with a pretty poor security track that most organisations and documents expect, which therefore means that you'll find HowTos, etc. geared towards it, or a couple of small, highly secure tools that work differently than the former and may require some scripting around them to achieve the same features, however usually implemented with higher quality.
This is a lot like Sendmail, older versions sucked, so they did a rewrite/audit and secured it reasonably well. Things change. http://www.isc.org/products/BIND/bind-security.html So far (knock on wood) Bind 9.x hasn't had any serious security bugs. Kurt Seifried, kurt@seifried.org A15B BEE5 B391 B9AD B0EF AEB0 AD63 0B4E AD56 E574 http://www.seifried.org/security/