nanog mailing list archives
Re: Reverse DNS RFCs and Recommendations
From: Masataka Ohta <mohta () necom830 hpcl titech ac jp>
Date: Fri, 01 Nov 2013 16:03:56 +0900
Mark Andrews wrote:
That said it is possible to completely automate the secure assignment of PTR records. It is also possible to completely automate the secure delegation of the reverse name space. See http://tools.ietf.org/html/draft-andrews-dnsop-pd-reverse-00
It is a lot simpler and a lot more practical just to use shared secret between a CPE and a ISP's name server for TSIG generation. As the secret can be directly shared end to end, it is more secure than DNSSEC involving untrustworthy third parties. Masataka Ohta
Current thread:
- Re: Reverse DNS RFCs and Recommendations Mark Andrews (Oct 31)
- Re: Reverse DNS RFCs and Recommendations Masataka Ohta (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Valdis . Kletnieks (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Masataka Ohta (Nov 01)
- Re: Reverse DNS RFCs and Recommendations William Herrin (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Mark Andrews (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Masataka Ohta (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Mark Andrews (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Mark Andrews (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Masataka Ohta (Nov 01)
- RE: Reverse DNS RFCs and Recommendations Alex Rubenstein (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Masataka Ohta (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Valdis . Kletnieks (Nov 01)
- Re: Reverse DNS RFCs and Recommendations Masataka Ohta (Nov 01)