[KLUG Members] RE: Members digest, Vol 1 #622 - 2 msgs

Bob Kanaley members@kalamazoolinux.org
Mon, 23 Sep 2002 17:32:54 -0400

Previous message: [KLUG Members] Postgres on NetWare
Next message: [KLUG Members] Screenshot of Login Dialogue
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Adam,

Clients in the sense of retrieving DNS info for individual computers aren't
really involved in most of the features you asked about. I believe the point
is to insure that zone transfers and updates from DNS masters to slaves,
primary to secondary, etc. are really from whom they appear to be. This
would deter script kiddies  from taking someone's website off the Internet
by propagating false DNS information.

Bob

Robert V. Kanaley
Manager Information Systems
Agdia, Inc.
rvk@agdia.com
http://www.agdia.com

-----
From: Adam Williams <awilliam@whitemice.org>
To: members@kalamazoolinux.org
Date: 22 Sep 2002 21:51:26 -0400
Subject: [KLUG Members] Bind 9 exotic featues?
Reply-To: members@kalamazoolinux.org

I'm building Bind 9 with sdb to use an LDAP back end,  something I've
been meaning to do for so long someone else up and did it. :)

So I was looking at the README that comes in the bind tar ball and it
lists a bunch of features I've never heard of -

DNSSEC (signed zones)
TSIG (signed DNS requests)
Views

The documentation on these seems a bit scant.  Anyone used these?

Cryptographically signing DNS queries and responses seems like a really
nice feature, but do any clients support it?

--
----------------------------------------------------------------
This message undoubtedly processed by the purely benevolent "US
Department of Homeland Security",  but don't worry... they're
only goal is to protect life, liberty and the pursuit of property.

Previous message: [KLUG Members] Postgres on NetWare
Next message: [KLUG Members] Screenshot of Login Dialogue
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]