Date: Thu, 8 Apr 1999 10:59:56 +0100 From: Jay Tribick <netadmin@fastnet.co.uk> To: freebsd-security@freebsd.org Subject: Re: ssh and scp Message-ID: <19990408105956.M2213@bofh.fastnet.co.uk> In-Reply-To: <84016.923565536@verdi.nethelp.no>; "sthaug@nethelp.no" on 08.04.1999 @ 10:58:56 BST References: <19990408105145.J2213@bofh.fastnet.co.uk> <84016.923565536@verdi.nethelp.no>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi > > > Maybe I'm missing something, but isn't that what zone transfers > > > are for? > > > > Yeh but he's probably looking for something that's encrypted - > > you could try the new DNSSEC beta's (www.toad.com/~dnssec , but > > AFAIK they just sign the zone files and don't actually encrypt > > them over the link. > > Note that: > > 1. BIND 8.2 already supports (part of) DNSSEC. > 2. But there are known bugs in the 8.2 implementation which can give > you crashes if it's used. An unofficial patch is available. Am I right in thinking that it doesn't encrypt the transfer, just signs it so that it can be authenticated? -- Regards, Jay Tribick <netadmin@fastnet.co.uk> [| Network Admin | FastNet International | http://fast.net.uk/ |] [| Finger netadmin@fastnet.co.uk for contact info & PGP PubKey |] [| +44 (0)1273 T: 677633 F: 621631 e: netadmin@fast.net.uk |] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990408105956.M2213>