Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 8 Apr 1999 10:59:56 +0100
From:      Jay Tribick <netadmin@fastnet.co.uk>
To:        freebsd-security@freebsd.org
Subject:   Re: ssh and scp
Message-ID:  <19990408105956.M2213@bofh.fastnet.co.uk>
In-Reply-To: <84016.923565536@verdi.nethelp.no>; "sthaug@nethelp.no" on 08.04.1999 @ 10:58:56 BST
References:  <19990408105145.J2213@bofh.fastnet.co.uk> <84016.923565536@verdi.nethelp.no>

next in thread | previous in thread | raw e-mail | index | archive | help
Hi

> > > Maybe I'm missing something, but isn't that what zone transfers
> > > are for?
> > 
> > Yeh but he's probably looking for something that's encrypted -
> > you could try the new DNSSEC beta's (www.toad.com/~dnssec , but 
> > AFAIK they just sign the zone files and don't actually encrypt 
> > them over the link.
> 
> Note that:
> 
> 1. BIND 8.2 already supports (part of) DNSSEC.
> 2. But there are known bugs in the 8.2 implementation which can give
> you crashes if it's used. An unofficial patch is available.

Am I right in thinking that it doesn't encrypt the transfer,
just signs it so that it can be authenticated?

--
Regards,

Jay Tribick <netadmin@fastnet.co.uk>

[| Network Admin | FastNet International | http://fast.net.uk/ |]
[| Finger netadmin@fastnet.co.uk for contact info & PGP PubKey |]
[|   +44 (0)1273 T: 677633 F: 621631 e: netadmin@fast.net.uk   |]



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990408105956.M2213>