[166617] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Reverse DNS RFCs and Recommendations

daemon@ATHENA.MIT.EDU (Masataka Ohta)
Fri Nov 1 18:10:01 2013

Date: Sat, 02 Nov 2013 07:12:20 +0900
From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
To: Valdis.Kletnieks@vt.edu
In-Reply-To: <79182.1383315326@turing-police.cc.vt.edu>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

 Valdis.Kletnieks@vt.edu wrote:

>> It is a lot simpler and a lot more practical just to
>> use shared secret between a CPE and a ISP's name server
>> for TSIG generation.
> 
> Hmm.. Shared secret between a CPE you don't necessarily control
> and your own DNS server?

Of course. That is the very basic requirement for any security
between two parties.

						Masataka Ohta


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[166617] in North American Network Operators' Group

Re: Reverse DNS RFCs and Recommendations

daemon@ATHENA.MIT.EDU (Masataka Ohta)Fri Nov 1 18:10:01 2013

daemon@ATHENA.MIT.EDU (Masataka Ohta)
Fri Nov 1 18:10:01 2013