From owner-freebsd-security Thu Apr 8 2:54: 6 1999 Delivered-To: freebsd-security@freebsd.org Received: from bofh.fastnet.co.uk (lart.org.uk [194.207.104.22]) by hub.freebsd.org (Postfix) with ESMTP id 7BE1C14BD7 for ; Thu, 8 Apr 1999 02:53:48 -0700 (PDT) (envelope-from synak@bofh.fastnet.co.uk) Received: (from root@localhost) by bofh.fastnet.co.uk (8.8.8/8.8.8) id KAA03230 for freebsd-security@freebsd.org; Thu, 8 Apr 1999 10:51:45 +0100 (BST) (envelope-from synak) Date: Thu, 8 Apr 1999 10:51:45 +0100 From: Jay Tribick To: freebsd-security@freebsd.org Subject: Re: ssh and scp Message-ID: <19990408105145.J2213@bofh.fastnet.co.uk> References: <007801be81a2$8f98e680$0602cfc2@gromit.uk1.vbc.net> <199904080936.TAA11475@atdot.dotat.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95i In-Reply-To: <199904080936.TAA11475@atdot.dotat.org>; "Mark Newton" on 08.04.1999 @ 10:36:09 BST Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi > > I am very new to FreeBSD and I have been asked > > to investigate some security issues. I am not sure if this is FreeBSD > > specific or a general OS question so please bear with me. > > I use ssh to securely login to remote machines and I am looking into > > secure transfer of DNS database records between nameservers. > > Maybe I'm missing something, but isn't that what zone transfers > are for? Yeh but he's probably looking for something that's encrypted - you could try the new DNSSEC beta's (www.toad.com/~dnssec , but AFAIK they just sign the zone files and don't actually encrypt them over the link. Other than that, set them both up as being 'masters' and just scp the zone files over every few [hours]. -- Regards, Jay Tribick [| Network Admin | FastNet International | http://fast.net.uk/ |] [| Finger netadmin@fastnet.co.uk for contact info & PGP PubKey |] [| +44 (0)1273 T: 677633 F: 621631 e: netadmin@fast.net.uk |] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message