SlideShare a Scribd company logo

PowerDNS-Admin vs DNS-UI

B
barbarousisk

The document presents a comparative analysis between two applications, PowerDNS-Admin and DNS-UI, focusing on features such as user management, DNS-related functionalities, and project engagement metrics. PowerDNS-Admin is noted for its comprehensive user role management and overall package suitability, while DNS-UI is highlighted for its focused DNS features and role specificity. The analysis suggests that the choice between the two applications depends on the specific needs of the project, particularly regarding user roles and management complexities.

Software
1 of 40
Download to read offline
1
2
Most read
3
4
5
Most read
6
7
Most read
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
PowerDNS-Admin/DNS-UI: A direct comparison Konstantinos Kouris (konkour@gunet.gr) Konstantinos Mparmparousis (barbarousisk@gunet.gr) Dimitris Papachristou (dimitrispa@gunet.gr) August 2021
Introduction/Background 0. We, a team composed of two Software Developers and a Dev- Ops Engineer, in the past few months have been conducting research upon the functionalities of the application “PowerDNS- Admin”, and have integrated some new useful features for our cause into the app, like pull requests #974, #980 and #1002. As someone with experience in the field can tell, our team was mostly concentrated on the identity management and identity security aspect, while also having a basic understanding of the DNS-Related functionalities the app has to offer. Consequently, part of our research was also to directly contrast PowerDNS-Admin with one of it’s biggest “rivaling” projects, DNS-UI. During the upcoming presentation we will attempt, as objectively as possible, to convey the finer details of each application and to depict where the 2 projects mainly differentiate, using the knowledge we have acquired.
Sections 0. Project Details User Interface DNS Related User Management Conclusion
Project Details 1. ‱ Project Engagement ‱ Project Structure ‱ Web Stacks
Project Engagement 1. MetricsApplications Contributors 92 17 Forks 440 53 Commits from last year 36 2 Commits from start of project 952 184 No. Of releases 5 11 Last major feature release 13/10/2020 26/04/2018 No. of Open/closed PRs 27/276 6/58 No. of Closed PRs in 2021 24 2 1st release date 08/02/2017 07/09/2018 Ldap related issues/commits 102/45 6/28 Wiki pages 18 2
Project Structure 1.
Web Stacks 1. ✓Flask Project. ✓Bootstrap. ✓Jquery. ✓SQLAlchemy (Python SQL toolkit). ✓Bootstrap. ✓Jquery. ✓PDO_PGSQL (enables access from PHP to PostgreSQL databases). ✓PEST (client library for RESTful web services).
User Interface 1. ‱ Differing features 2.
2. Quick Overview
Differing features 2. ✓Zones are groupped by reversed Internet domain name (.com, .en, .gr). ✓Connection with PowerDNS server only established during app installation via conf files. ✓Changelogs about zone modifications. ✓Application activity per distinct User tracking. ✓Pagination and alphanumerical sorting ✓No logout Button ✓PDNS Connection template ✓PDNS Statistics & Configuration ✓Global search ✓Application History JSON formatted logs
PDA : PDNS Connection template. 2. ❑ Instead of configuring the connection during installation, PDA requires you to establish a connection to a PoweDNS Authoritative server via it’s interface, which is also easily configurable if changes are needed afterwards.
PDA : PDNS Statistics & Configuration. 2. ❑ PDA also provides an outlet for several informative statistics regarding the PowerDNS Authoritative server.
PDA : Global Search 2. ❑ The global search option provides the possibility for users to search either for a domain by name, for a rrset record’s information, or for a comment on a specific record.
PDA : Application History JSON formatted logs (1) 2. ❑ PowerDNS-Admin monitors and presents in a JSON format every event that takes place while it is operating, including domain updates and logging users.
PDA : Application History JSON formatted logs (2) 2.
DNS-UI : Changelogs about zone modifications 2. ❑ DNS-UI displays the changes made to a zone in comparison to the original state of the zone, including record’s additions, deletions and modifications.
DNS-UI : Application activity per distinct User tracking. 2. ❑ DNS-UI retains a complete list with every activity a user has made on the application, such as adding/deleting a zone/record, posting a comment, etc.
DNS Related 1. 2. 3. ‱ Differing options/features
Differing options/features 2. ✓Wide selection of dns record settings. ✓Option for Auto PTR creation. ✓Slave Domain type available as an option. ✓Configurable Serial number per zone. ✓Multiple Record Templates, including SOA/Nameserver. ✓Zone import/export. ✓Option for Auto PTR reverse records creation in .conf file. ✓Matching Records split into a new zone. ✓SOA/Nameserver Templates. 3.
PDA : Wide selection of dns record settings 2. 4. 3. ❑ PowerDNS-Admin offers a wide variety of record type settings, which can be toggled on and be available for selection when creating or editing a record.
PDA : Option for Auto PTR creation (1) 2. 4. 3. ❑ As mentioned above, this option allows automatic reverse pointer creation when records are updated.
PDA : Option for Auto PTR creation (2) 2. 4. 3.
DNS-UI : Zone import/export 2. 4. 3. ❑ DNS-UI is able to either export or import zones packaged in bind9 format, providing an outlet of interaction with other PowerDNS servers.
DNS-UI : Subdomains can split into a new zone 2. 4. 3. ❑ DNS-UI utilizes a tool that allows you to split subdomains found in the rrset of a zone to a completely new zone.
User Management 1. 2. 3. 4. ‱ Authentication Providers ‱ Roles ‱ Domain Associations ‱ LDAP Role Management
1. 2. 4. Authentication Providers ✓Local DB authentication. ✓LDAP. ✓Github Oauth. ✓Azure Oauth. ✓OpenID Oauth. ✓SAML (non-UI configurable). ✓Local DB authentication. ✓Authentications can also be managed by a LDAP server, who is cached and gets updated following a predetermined time frame.
1. 2. 4. Authentication Providers
1. 2. 4. Roles ✓Roles are partitioned to: I. Administrators. (allowed to access and manage everything) II. Operators. (unable to manage some app settings) III. Users. (Zone management) ✓ Roles are partitioned to: I. Administrators. (allowed to access and manage everything) II. Users. (Zone management as zone admin or zone Operator) ✓ Zone specific role management: I. Zone Administrator. (PDA-User equivalent regarding zone modifications) II. Zone Operator. (request zone modifications to be approved by an Administrator)
PDA : Administrators, Operators and Users 2. 4. ❑ Administrators: They are able to use every functionality on PDA, modify any setting they wish, and also manage Users, Accounts and Domains. ❑ Operators: They have the same rights as an Administrator, except for the access to PDA’s “PDNS” & “Authentication” settings. ❑ Users: They can modify a rrset of a domain they were given access to, and maybe even create a new domain, if the corresponding setting allowing users to create domains is toggled on.
DNS-UI : Administrators and Users 2. 4. ❑ Administrators: They are able to create or edit a new zone, have access to every setting available, to create or edit a User and also define a User’s access per zone. However, zone deletions require confirmation from another Administrator. ❑ Users: Depending on which role they are appointed in a specific zone, they can either be zone Administrators or zone Operators.
DNS-UI : Zone Administrators and Zone Operators 2. 4. As mentioned above: ❑ Zone Administrators: Can directly edit any rrset records in the zone. ❑ Zone Operators: Can request changes to any records in the zone, while waiting for approval either from a zone Administrator or a DNS-UI Administrator.
1. 2. 4. Domain/Zones Associations ✓Domains can either: I. Be independent. II. Belong to an Account. ✓ Users can be registered to both Accounts and Domains. ✓ Option for Users to create a Domain from scratch for their Accounts. ✓Zones can either: I. Be independent. II. Belong to a Classification. ✓ Users can only be registered to their corresponding zones as Admins or Operators. ✓ Users must contact the Administrator to create a zone.
PDA : Domains & Accounts 2. 4. ❑ Accounts associate several domains with one another. Users registered to these accounts have full access to every domain included.
DNS-UI : Zones & Classifications 2. 4. ❑ Classifications groupify zones together. Opera intended for this to be a field that distinguishes internal zones (that should only be synced out to the internal resolvers) and public zones (that should be synced to all resolvers and the public nameservers). In actuality it consists of data coming from the “Account” model in PowerDNS.
1. 2. 4. LDAP Role Management ✓User Roles can be defined by which LDAP Group they are placed in. ✓User Roles & Associations can also be provisioned by an Attribute found in their LDAP Object. ✓User Roles are defined by which configured LDAP Group (ldap_groups_cn) they are placed in.
DNS-UI/PDA : LDAP Groups 2. 4. ❑ Based on which ldap group each user is a part of, DNS-UI and PDA can determine their role in the application, more specifically whether he is a DNS-UI Administrator/User or PDA Administrator/Operator/User respectively.
PDA : LDAP Entitlements Provisioning 2. 4. ❑ Based on a LDAP attribute on the user’s object, PDA can provision a user’s roles and associations, giving them access to Domains and Accounts, or even changing their PDA-Role.
PDA : Entitlements Provisioning 2. 4. In the previous slide we showcase the LDAP counterpart. However, provisioning the roles of a user based on an attribute in his object can theoretically be implemented across the range of most authentication providers for PDA, as we mention here. Also as mentioned, this practice would be very beneficial for larger organizations that already have many active applications involving their users. That way, they are able to monitor every application and user available, by simply adding a corresponding record from each application to the user's object. Our team at the time of writing is currently working on implementing said feature upon the OpenID Connect Protocol.
Conclusion 1. 2. 3. 4. 5.
PowerDNS-Admin/DNS-UI 1. 2. 3. 4. 5. We strongly consider both applications to be noteworthy candidates for a PowerDNS Authoritative Server Web GUI. Furthermore, we feel like DNS-UI would be better suited for teams and projects that wish to focus strictly on the DNS-Related side of things, perhaps somewhat being indifferent to the User’s Role-Management and the User Interface aspect, while PowerDNS-Admin can be considered as more of an all-around package. To elaborate, a project with a plethora of domains and distinct users would be better suited and managed by PowerDNS-Admin. Having said that, the key difference of the DNS-UI Zone Operator role (requests for zone updates) not existing in PowerDNS-Admin ,would certainly tip the scale towards DNS-UI’s way for projects that require sensitive handling of operations to their domains/zones. Last but not least, we have noticed a higher engagement and interaction rate overall in the PowerDNS-Admin github repository, comparing to the one of DNS-UI.

More Related Content

PPTX
KeycloakでAPIèȘćŻă«ć…„門する
Hitachi, Ltd. OSS Solution Center.
 
PDF
[ì˜€í”ˆí…ŒíŹë„·ì„œë°‹2022] ê”­ë‚Ž PaaS(Kubernetes) Best Practice 및 DevOps 환êČœ ê”Źì¶• ì‚ŹëĄ€.pdf
Open Source Consulting
 
PPTX
ă‚”ăƒăƒŒăƒˆ スンゾニケがèȘžă‚‹ă€ăƒˆăƒ©ăƒ–ăƒ«ă‚’æœȘ然にé˜Čぐためぼ Azure ă‚€ăƒłăƒ•ăƒ©èš­èšˆ
ShuheiUda
 
PDF
150416 OpenStack Networking with Neutron Jieun, Kim
jieun kim
 
PDF
SD-WANăŁăŠäœ•ă ă‚ă†ă€‚äœżă„æ–čă‚’çŸ„ăŁăŠăżă‚ˆă†(AWS戆)
Yukihiro Kikuchi
 
PPTX
Ansible module development 101
yfauser
 
PDF
kpackă«ă‚ˆă‚‹ă‚łăƒłăƒ†ăƒŠă‚€ăƒĄăƒŒă‚žăźăƒ“ăƒ«ăƒ‰
Masanori Nara
 
PDF
ă‚čトăƒȘăƒŒăƒ ć‡Šç†ă‚’æ”Żăˆă‚‹ă‚­ăƒ„ăƒŒă‚€ăƒłă‚°ă‚·ă‚čテムぼ遾びæ–č
Yoshiyasu SAEKI
 
KeycloakでAPIèȘćŻă«ć…„門する
Hitachi, Ltd. OSS Solution Center.
 
[ì˜€í”ˆí…ŒíŹë„·ì„œë°‹2022] ê”­ë‚Ž PaaS(Kubernetes) Best Practice 및 DevOps 환êČœ ê”Źì¶• ì‚ŹëĄ€.pdf
Open Source Consulting
 
ă‚”ăƒăƒŒăƒˆ スンゾニケがèȘžă‚‹ă€ăƒˆăƒ©ăƒ–ăƒ«ă‚’æœȘ然にé˜Čぐためぼ Azure ă‚€ăƒłăƒ•ăƒ©èš­èšˆ
ShuheiUda
 
150416 OpenStack Networking with Neutron Jieun, Kim
jieun kim
 
SD-WANăŁăŠäœ•ă ă‚ă†ă€‚äœżă„æ–čă‚’çŸ„ăŁăŠăżă‚ˆă†(AWS戆)
Yukihiro Kikuchi
 
Ansible module development 101
yfauser
 
kpackă«ă‚ˆă‚‹ă‚łăƒłăƒ†ăƒŠă‚€ăƒĄăƒŒă‚žăźăƒ“ăƒ«ăƒ‰
Masanori Nara
 
ă‚čトăƒȘăƒŒăƒ ć‡Šç†ă‚’æ”Żăˆă‚‹ă‚­ăƒ„ăƒŒă‚€ăƒłă‚°ă‚·ă‚čテムぼ遾びæ–č
Yoshiyasu SAEKI
 

What's hot (20)

PDF
Oficina docker
Morvana Bonin
 
PDF
20200219 AWS Black Belt Online Seminar ă‚Șンプレミă‚čずAWSé–“ăźć†—é•·ćŒ–æŽ„ç¶š
Amazon Web Services Japan
 
PDF
さくらぼDockerコンテナホă‚čティング-Arukasăźè§ŁèȘŹăšă‚€ăƒłăƒ•ăƒ©ă‚’æ”Żăˆă‚‹æŠ€èĄ“ïŒˆJuly Tech Festa 2016 『IoTxAIxă‚€ăƒłăƒ•ăƒ©æ™‚ä»Ł...
ă•ăă‚‰ă‚€ăƒłă‚żăƒŒăƒăƒƒăƒˆæ ȘćŒäŒšç€Ÿ
 
PDF
cloudpackèČ è·è·äșșç”æžœăƒŹăƒăƒŒăƒˆïŒˆă‚”ăƒłăƒ—ăƒ«ïŒ‰
iret, Inc.
 
PDF
OpenShift Meetup - Tokyo - Service Mesh and Serverless Overview
María Angélica Bracho
 
PDF
Essentials of container
Toru Makabe
 
PPTX
Intro to Knative
Christian Posta
 
PDF
MongoDBぼケレをケレする
Akihiro Kuwano
 
PDF
Dapr on Kubernetes
Shiho ASA
 
PPTX
NGSIv1 ă‚’çŸ„ăŁăŠă„ă‚‹é–‹ç™șè€…ć‘ă‘ăź NGSIv2 ăźæŠ‚èŠ (Orion 1.14.0ćŻŸćżœ)
fisuda
 
PDF
AWS Black Belt Online Seminar 2018 AWS Well-Architected Framework
Amazon Web Services Japan
 
PDF
큎띌우드 ëŠŹì…€ëŸŹì™€ MSPë„Œ 위한 화읎튞 띌ëČš êŽ€ëŠŹ 플랫폌 OpsNow 활용 방안
BESPIN GLOBAL
 
PPTX
Active DirectoryでDHCPă‚’äœżă†ă€€ïœžDHCPă‚”ăƒŒăƒăƒŒăšă‚Żăƒ©ă‚€ă‚ąăƒłăƒˆăźèš­ćźšïœž
Michio Koyama
 
PDF
20210216 AWS Black Belt Online Seminar AWS Database Migration Service
Amazon Web Services Japan
 
PDF
Azure Kubernetes Service Overview
Takeshi Fukuhara
 
PDF
ăƒ‰ăƒĄă‚€ăƒłé§†ć‹•èš­èšˆăźæ­Łă—ă„æ­©ăæ–č
汗田 äșš
 
PDF
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Kai WĂ€hner
 
PDF
[WSO2 Summit EMEA 2020] Building an Interactive API Marketplace
WSO2
 
PDF
Real World Azure RBAC
Toru Makabe
 
PPTX
Reuso de software
rebekinha
 
Oficina docker
Morvana Bonin
 
20200219 AWS Black Belt Online Seminar ă‚Șンプレミă‚čずAWSé–“ăźć†—é•·ćŒ–æŽ„ç¶š
Amazon Web Services Japan
 
さくらぼDockerコンテナホă‚čティング-Arukasăźè§ŁèȘŹăšă‚€ăƒłăƒ•ăƒ©ă‚’æ”Żăˆă‚‹æŠ€èĄ“ïŒˆJuly Tech Festa 2016 『IoTxAIxă‚€ăƒłăƒ•ăƒ©æ™‚ä»Ł...
ă•ăă‚‰ă‚€ăƒłă‚żăƒŒăƒăƒƒăƒˆæ ȘćŒäŒšç€Ÿ
 
cloudpackèČ è·è·äșșç”æžœăƒŹăƒăƒŒăƒˆïŒˆă‚”ăƒłăƒ—ăƒ«ïŒ‰
iret, Inc.
 
OpenShift Meetup - Tokyo - Service Mesh and Serverless Overview
María Angélica Bracho
 
Essentials of container
Toru Makabe
 
Intro to Knative
Christian Posta
 
MongoDBぼケレをケレする
Akihiro Kuwano
 
Dapr on Kubernetes
Shiho ASA
 
NGSIv1 ă‚’çŸ„ăŁăŠă„ă‚‹é–‹ç™șè€…ć‘ă‘ăź NGSIv2 ăźæŠ‚èŠ (Orion 1.14.0ćŻŸćżœ)
fisuda
 
AWS Black Belt Online Seminar 2018 AWS Well-Architected Framework
Amazon Web Services Japan
 
큎띌우드 ëŠŹì…€ëŸŹì™€ MSPë„Œ 위한 화읎튞 띌ëČš êŽ€ëŠŹ 플랫폌 OpsNow 활용 방안
BESPIN GLOBAL
 
Active DirectoryでDHCPă‚’äœżă†ă€€ïœžDHCPă‚”ăƒŒăƒăƒŒăšă‚Żăƒ©ă‚€ă‚ąăƒłăƒˆăźèš­ćźšïœž
Michio Koyama
 
20210216 AWS Black Belt Online Seminar AWS Database Migration Service
Amazon Web Services Japan
 
Azure Kubernetes Service Overview
Takeshi Fukuhara
 
ăƒ‰ăƒĄă‚€ăƒłé§†ć‹•èš­èšˆăźæ­Łă—ă„æ­©ăæ–č
汗田 äșš
 
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Kai WĂ€hner
 
[WSO2 Summit EMEA 2020] Building an Interactive API Marketplace
WSO2
 
Real World Azure RBAC
Toru Makabe
 
Reuso de software
rebekinha
 
Ad

Similar to PowerDNS-Admin vs DNS-UI (20)

DOCX
PowerPoint PresentationThis section will include an online pre.docx
ChantellPantoja184
 
DOC
70 640
alokfit
 
PDF
Step by-step guide to managing the active directory
Pradeep Agarwal
 
DOCX
Windows server Interview question and answers
Availity Fore Support Services pvt ltd
 
DOCX
1Running head WINDOWS SERVER DEPLOYMENT PROPOSAL2WINDOWS SE.docx
aulasnilda
 
PPTX
server configuration concepts in system admin
sdsm2
 
PPTX
Centralizing users’ authentication at Active Directory level 
Hossein Sarshar
 
PPT
70 640 Lesson02 Ppt 041009
Coffeyville Community College
 
PPTX
End-to-End Security and Auditing in a Big Data as a Service Deployment
DataWorks Summit/Hadoop Summit
 
PPT
AD ChildDomains.ppt
webhostingguy
 
PPTX
Hadoop Security in Big-Data-as-a-Service Deployments - Presented at Hadoop Su...
Abhiraj Butala
 
PPTX
Installing And configuring active directory .pptx
tallawanbealynne
 
PPT
Chapter03 Creating And Managing User Accounts
Raja Waseem Akhtar
 
PDF
Managing HotSpot Clients With FreeRadius
Dashamir Hoxha
 
PDF
IRJET- Research Paper on Active Directory
IRJET Journal
 
PDF
Dynamics of Leading Legacy Databases
Cognizant
 
DOCX
2Windows Server Proposal for Dynamic SolarKelvin L.docx
tamicawaysmith
 
PDF
Final domain control policy
BhagyashriJadhav16
 
PPTX
Active Directory
rainrjcahili
 
PDF
HPE NonStop SQL WebDBS - Introduction
Frans Jongma
 
PowerPoint PresentationThis section will include an online pre.docx
ChantellPantoja184
 
70 640
alokfit
 
Step by-step guide to managing the active directory
Pradeep Agarwal
 
Windows server Interview question and answers
Availity Fore Support Services pvt ltd
 
1Running head WINDOWS SERVER DEPLOYMENT PROPOSAL2WINDOWS SE.docx
aulasnilda
 
server configuration concepts in system admin
sdsm2
 
Centralizing users’ authentication at Active Directory level 
Hossein Sarshar
 
70 640 Lesson02 Ppt 041009
Coffeyville Community College
 
End-to-End Security and Auditing in a Big Data as a Service Deployment
DataWorks Summit/Hadoop Summit
 
AD ChildDomains.ppt
webhostingguy
 
Hadoop Security in Big-Data-as-a-Service Deployments - Presented at Hadoop Su...
Abhiraj Butala
 
Installing And configuring active directory .pptx
tallawanbealynne
 
Chapter03 Creating And Managing User Accounts
Raja Waseem Akhtar
 
Managing HotSpot Clients With FreeRadius
Dashamir Hoxha
 
IRJET- Research Paper on Active Directory
IRJET Journal
 
Dynamics of Leading Legacy Databases
Cognizant
 
2Windows Server Proposal for Dynamic SolarKelvin L.docx
tamicawaysmith
 
Final domain control policy
BhagyashriJadhav16
 
Active Directory
rainrjcahili
 
HPE NonStop SQL WebDBS - Introduction
Frans Jongma
 
Ad

Recently uploaded (20)

PDF
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
PDF
Tally Prime Crack Download New Version 5.1 [2025] (License Key Free
itskinga12
 
PPTX
Advanced SystemCare Ultimate Crack + Portable (2025)
adanataj41
 
PPTX
Embracing Complexity in Serverless! GOTO Serverless Bengaluru
SheenBrisals
 
PDF
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
PPTX
AMADEUS TRAVEL AGENT SOFTWARE | AMADEUS TICKETING SYSTEM
philipnathen82
 
PDF
wealthsignaloriginal-com-DS-text-... (1).pdf
skmiani786
 
PDF
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
PDF
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
PDF
How AI/LLM recommend to you ? GDG meetup 16 Aug by Fariman Guliev
HusseinMalikMammadli
 
PDF
Cost to Outsource Software Development in 2025
Omega Incorporations- Best Software Development Company
 
PDF
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
PPTX
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
PDF
Autodesk AutoCAD Crack Free Download 2025
hggfcrd hgggref
 
PDF
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
PPTX
CHAPTER 2 - PM Management and IT Context
KevinPutra14
 
PDF
17 Powerful Integrations Your Next-Gen MLM Software Needs
ventaforcemlmsoftwar
 
PDF
Designing Intelligence for the Shop Floor.pdf
nikglvk
 
PDF
Nekopoi APK 2025 free lastest update
umarali35kp
 
PDF
Website Design Services for Small Businesses.pdf
ecomme9
 
EN-Survey-Report-SAP-LeanIX-EA-Insights-2025.pdf
deepakkhaitan3
 
Tally Prime Crack Download New Version 5.1 [2025] (License Key Free
itskinga12
 
Advanced SystemCare Ultimate Crack + Portable (2025)
adanataj41
 
Embracing Complexity in Serverless! GOTO Serverless Bengaluru
SheenBrisals
 
Wondershare Filmora 15 Crack With Activation Key [2025
ghrom2211g
 
AMADEUS TRAVEL AGENT SOFTWARE | AMADEUS TICKETING SYSTEM
philipnathen82
 
wealthsignaloriginal-com-DS-text-... (1).pdf
skmiani786
 
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
How AI/LLM recommend to you ? GDG meetup 16 Aug by Fariman Guliev
HusseinMalikMammadli
 
Cost to Outsource Software Development in 2025
Omega Incorporations- Best Software Development Company
 
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
Autodesk AutoCAD Crack Free Download 2025
hggfcrd hgggref
 
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
CHAPTER 2 - PM Management and IT Context
KevinPutra14
 
17 Powerful Integrations Your Next-Gen MLM Software Needs
ventaforcemlmsoftwar
 
Designing Intelligence for the Shop Floor.pdf
nikglvk
 
Nekopoi APK 2025 free lastest update
umarali35kp
 
Website Design Services for Small Businesses.pdf
ecomme9
 

PowerDNS-Admin vs DNS-UI

  • 1. PowerDNS-Admin/DNS-UI: A direct comparison Konstantinos Kouris (konkour@gunet.gr) Konstantinos Mparmparousis (barbarousisk@gunet.gr) Dimitris Papachristou (dimitrispa@gunet.gr) August 2021
  • 2. Introduction/Background 0. We, a team composed of two Software Developers and a Dev- Ops Engineer, in the past few months have been conducting research upon the functionalities of the application “PowerDNS- Admin”, and have integrated some new useful features for our cause into the app, like pull requests #974, #980 and #1002. As someone with experience in the field can tell, our team was mostly concentrated on the identity management and identity security aspect, while also having a basic understanding of the DNS-Related functionalities the app has to offer. Consequently, part of our research was also to directly contrast PowerDNS-Admin with one of it’s biggest “rivaling” projects, DNS-UI. During the upcoming presentation we will attempt, as objectively as possible, to convey the finer details of each application and to depict where the 2 projects mainly differentiate, using the knowledge we have acquired.
  • 3. Sections 0. Project Details User Interface DNS Related User Management Conclusion
  • 4. Project Details 1. ‱ Project Engagement ‱ Project Structure ‱ Web Stacks
  • 5. Project Engagement 1. MetricsApplications Contributors 92 17 Forks 440 53 Commits from last year 36 2 Commits from start of project 952 184 No. Of releases 5 11 Last major feature release 13/10/2020 26/04/2018 No. of Open/closed PRs 27/276 6/58 No. of Closed PRs in 2021 24 2 1st release date 08/02/2017 07/09/2018 Ldap related issues/commits 102/45 6/28 Wiki pages 18 2
  • 7. Web Stacks 1. ✓Flask Project. ✓Bootstrap. ✓Jquery. ✓SQLAlchemy (Python SQL toolkit). ✓Bootstrap. ✓Jquery. ✓PDO_PGSQL (enables access from PHP to PostgreSQL databases). ✓PEST (client library for RESTful web services).
  • 10. Differing features 2. ✓Zones are groupped by reversed Internet domain name (.com, .en, .gr). ✓Connection with PowerDNS server only established during app installation via conf files. ✓Changelogs about zone modifications. ✓Application activity per distinct User tracking. ✓Pagination and alphanumerical sorting ✓No logout Button ✓PDNS Connection template ✓PDNS Statistics & Configuration ✓Global search ✓Application History JSON formatted logs
  • 11. PDA : PDNS Connection template. 2. ❑ Instead of configuring the connection during installation, PDA requires you to establish a connection to a PoweDNS Authoritative server via it’s interface, which is also easily configurable if changes are needed afterwards.
  • 12. PDA : PDNS Statistics & Configuration. 2. ❑ PDA also provides an outlet for several informative statistics regarding the PowerDNS Authoritative server.
  • 13. PDA : Global Search 2. ❑ The global search option provides the possibility for users to search either for a domain by name, for a rrset record’s information, or for a comment on a specific record.
  • 14. PDA : Application History JSON formatted logs (1) 2. ❑ PowerDNS-Admin monitors and presents in a JSON format every event that takes place while it is operating, including domain updates and logging users.
  • 15. PDA : Application History JSON formatted logs (2) 2.
  • 16. DNS-UI : Changelogs about zone modifications 2. ❑ DNS-UI displays the changes made to a zone in comparison to the original state of the zone, including record’s additions, deletions and modifications.
  • 17. DNS-UI : Application activity per distinct User tracking. 2. ❑ DNS-UI retains a complete list with every activity a user has made on the application, such as adding/deleting a zone/record, posting a comment, etc.
  • 19. Differing options/features 2. ✓Wide selection of dns record settings. ✓Option for Auto PTR creation. ✓Slave Domain type available as an option. ✓Configurable Serial number per zone. ✓Multiple Record Templates, including SOA/Nameserver. ✓Zone import/export. ✓Option for Auto PTR reverse records creation in .conf file. ✓Matching Records split into a new zone. ✓SOA/Nameserver Templates. 3.
  • 20. PDA : Wide selection of dns record settings 2. 4. 3. ❑ PowerDNS-Admin offers a wide variety of record type settings, which can be toggled on and be available for selection when creating or editing a record.
  • 21. PDA : Option for Auto PTR creation (1) 2. 4. 3. ❑ As mentioned above, this option allows automatic reverse pointer creation when records are updated.
  • 22. PDA : Option for Auto PTR creation (2) 2. 4. 3.
  • 23. DNS-UI : Zone import/export 2. 4. 3. ❑ DNS-UI is able to either export or import zones packaged in bind9 format, providing an outlet of interaction with other PowerDNS servers.
  • 24. DNS-UI : Subdomains can split into a new zone 2. 4. 3. ❑ DNS-UI utilizes a tool that allows you to split subdomains found in the rrset of a zone to a completely new zone.
  • 25. User Management 1. 2. 3. 4. ‱ Authentication Providers ‱ Roles ‱ Domain Associations ‱ LDAP Role Management
  • 26. 1. 2. 4. Authentication Providers ✓Local DB authentication. ✓LDAP. ✓Github Oauth. ✓Azure Oauth. ✓OpenID Oauth. ✓SAML (non-UI configurable). ✓Local DB authentication. ✓Authentications can also be managed by a LDAP server, who is cached and gets updated following a predetermined time frame.
  • 28. 1. 2. 4. Roles ✓Roles are partitioned to: I. Administrators. (allowed to access and manage everything) II. Operators. (unable to manage some app settings) III. Users. (Zone management) ✓ Roles are partitioned to: I. Administrators. (allowed to access and manage everything) II. Users. (Zone management as zone admin or zone Operator) ✓ Zone specific role management: I. Zone Administrator. (PDA-User equivalent regarding zone modifications) II. Zone Operator. (request zone modifications to be approved by an Administrator)
  • 29. PDA : Administrators, Operators and Users 2. 4. ❑ Administrators: They are able to use every functionality on PDA, modify any setting they wish, and also manage Users, Accounts and Domains. ❑ Operators: They have the same rights as an Administrator, except for the access to PDA’s “PDNS” & “Authentication” settings. ❑ Users: They can modify a rrset of a domain they were given access to, and maybe even create a new domain, if the corresponding setting allowing users to create domains is toggled on.
  • 30. DNS-UI : Administrators and Users 2. 4. ❑ Administrators: They are able to create or edit a new zone, have access to every setting available, to create or edit a User and also define a User’s access per zone. However, zone deletions require confirmation from another Administrator. ❑ Users: Depending on which role they are appointed in a specific zone, they can either be zone Administrators or zone Operators.
  • 31. DNS-UI : Zone Administrators and Zone Operators 2. 4. As mentioned above: ❑ Zone Administrators: Can directly edit any rrset records in the zone. ❑ Zone Operators: Can request changes to any records in the zone, while waiting for approval either from a zone Administrator or a DNS-UI Administrator.
  • 32. 1. 2. 4. Domain/Zones Associations ✓Domains can either: I. Be independent. II. Belong to an Account. ✓ Users can be registered to both Accounts and Domains. ✓ Option for Users to create a Domain from scratch for their Accounts. ✓Zones can either: I. Be independent. II. Belong to a Classification. ✓ Users can only be registered to their corresponding zones as Admins or Operators. ✓ Users must contact the Administrator to create a zone.
  • 33. PDA : Domains & Accounts 2. 4. ❑ Accounts associate several domains with one another. Users registered to these accounts have full access to every domain included.
  • 34. DNS-UI : Zones & Classifications 2. 4. ❑ Classifications groupify zones together. Opera intended for this to be a field that distinguishes internal zones (that should only be synced out to the internal resolvers) and public zones (that should be synced to all resolvers and the public nameservers). In actuality it consists of data coming from the “Account” model in PowerDNS.
  • 35. 1. 2. 4. LDAP Role Management ✓User Roles can be defined by which LDAP Group they are placed in. ✓User Roles & Associations can also be provisioned by an Attribute found in their LDAP Object. ✓User Roles are defined by which configured LDAP Group (ldap_groups_cn) they are placed in.
  • 36. DNS-UI/PDA : LDAP Groups 2. 4. ❑ Based on which ldap group each user is a part of, DNS-UI and PDA can determine their role in the application, more specifically whether he is a DNS-UI Administrator/User or PDA Administrator/Operator/User respectively.
  • 37. PDA : LDAP Entitlements Provisioning 2. 4. ❑ Based on a LDAP attribute on the user’s object, PDA can provision a user’s roles and associations, giving them access to Domains and Accounts, or even changing their PDA-Role.
  • 38. PDA : Entitlements Provisioning 2. 4. In the previous slide we showcase the LDAP counterpart. However, provisioning the roles of a user based on an attribute in his object can theoretically be implemented across the range of most authentication providers for PDA, as we mention here. Also as mentioned, this practice would be very beneficial for larger organizations that already have many active applications involving their users. That way, they are able to monitor every application and user available, by simply adding a corresponding record from each application to the user's object. Our team at the time of writing is currently working on implementing said feature upon the OpenID Connect Protocol.
  • 40. PowerDNS-Admin/DNS-UI 1. 2. 3. 4. 5. We strongly consider both applications to be noteworthy candidates for a PowerDNS Authoritative Server Web GUI. Furthermore, we feel like DNS-UI would be better suited for teams and projects that wish to focus strictly on the DNS-Related side of things, perhaps somewhat being indifferent to the User’s Role-Management and the User Interface aspect, while PowerDNS-Admin can be considered as more of an all-around package. To elaborate, a project with a plethora of domains and distinct users would be better suited and managed by PowerDNS-Admin. Having said that, the key difference of the DNS-UI Zone Operator role (requests for zone updates) not existing in PowerDNS-Admin ,would certainly tip the scale towards DNS-UI’s way for projects that require sensitive handling of operations to their domains/zones. Last but not least, we have noticed a higher engagement and interaction rate overall in the PowerDNS-Admin github repository, comparing to the one of DNS-UI.