[176] in Hesiod
Hesiod and system security
daemon@ATHENA.MIT.EDU (MDICKSON@CSI.compuserve.com)
Tue Feb 22 22:21:01 1994
From: MDICKSON@CSI.compuserve.com
Date: 22 Feb 94 22:16:45 EST
To: <hesiod@MIT.EDU>
A question about hesiod. Given recent CERT advisories about security
on the internet I'm interested in how you might set up hesiod to avoid
giving a cracker an easy repository of site information to skim through.
Since hesiod is based on the name server how does one restrict such
access to a local domain? Some kind of kerberos authentication would
seem in order but since the "hesiod server" is simply named how does
one provide information in a "secure" way.
I'm probably showing my lack of experience in this area by even asking
but it occured that this MUST have been addressed sometime in the past.
Thanks,
Mike Dickson
CompuServe, Incorporated
