MaraDNS is one of the oldest continuously maintained DNS server software projects. It was created by Sam Trenholme, who began developing the software in the early 2000s with a focus on simplicity, security, and minimalism.
Sam Trenholme started MaraDNS as a response to the growing complexity of DNS server software at the time. In the early 2000s, DNS servers like BIND were becoming increasingly complex, with large codebases that were difficult to audit for security vulnerabilities. Trenholme’s goal was to create a DNS server that was:
The name “MaraDNS” comes from “Maradns” which doesn’t have a specific meaning but reflects the project’s unique identity in the DNS server landscape.
2001-2003: Initial development and first releases. The early versions established the core architecture with separate processes for authoritative and recursive DNS resolution.
2004-2008: MaraDNS gained popularity among small businesses and home users who needed a simple, reliable DNS server. The 1.x series matured during this period with bug fixes and stability improvements.
2009-2012: The 2.x series introduced improvements to zone file handling and configuration options. However, Trenholme made the deliberate decision not to implement DNSSEC, citing complexity and security concerns.
2013-2018: The 3.x series brought incremental improvements while maintaining the minimalist philosophy. Version 3.0 introduced better IPv6 support and improved Windows compatibility.
2019-Present: MaraDNS is actively maintained. The latest release 3.5.0036 (May 2023) focuses on security patches and bug fixes, with ongoing Git development continuing into 2026, including active security investigations and code review.
One of the most notable aspects of MaraDNS history is the deliberate decision not to implement DNSSEC (Domain Name System Security Extensions). This decision, made by Sam Trenholme, was based on several factors:
This decision has limited MaraDNS adoption in enterprise environments where DNSSEC is required, but it has maintained a loyal user base among those who value simplicity.
The MaraDNS project includes several complementary tools that extend its capabilities:
These components have evolved alongside the core MaraDNS server, with coLunacyDNS and Deadwood seeing particularly active development and security review through 2026.
2022-2023 Security Issues: MaraDNS faced significant security challenges:
These vulnerabilities led to MaraDNS being removed from Debian testing (trixie/Debian 13) in 2023. The Debian security team cited concerns about the project’s limited active development and the age of known vulnerabilities in the stable package (version 2.0.13).
2026 Security Investigation Activity: In early 2026, a potential NULL-in-CNAME security issue was reported for the Deadwood recursive resolver component. After thorough investigation by the maintainer, the report was determined not to represent a real bug – no exploitable condition existed in the actual code. This demonstrates the project’s ongoing security responsiveness and active review process.
As of 2024-2026, MaraDNS exists in a unique position:
MaraDNS has influenced DNS server development by demonstrating that:
While MaraDNS may not be suitable for large-scale or DNSSEC-requiring deployments, its history reflects an important philosophy in software development: sometimes less is more.
Any questions?
Feel free to contact us. Find all contact information on our contact page.