I have been "tasked" with replacing our main internet facing DNS server and have been looking into 
the various such as chroot environments. I'd planned on using a base install of Etch as the OS 
platform.
Chroot's seem like a really good idea but one thing I thought that I could do to increase security 
is to run the it in our DMZ. I can have multiple external IP addresses on our firewall so this isn't 
a problem and the just port forward port 53.
Am I missing something, would this work and does anyone have any advice about this ??
Thanks
Brian
------------------------------------------------------------------------------------------------
    The views expressed here are my own and not necessarily
 
                the views of Portsmouth College