DNSSEC validation for a local Bind
Mark Andrews
marka at isc.org
Thu Apr 17 01:39:32 UTC 2014
In message <CAG2Qp6uER-5yJNZV3+0CgM2cV1SC6R-3isWzy6H0iKyd+jwR3Q at mail.gmail.com>
, Roberto Carna writes:
> Dear, I have a local Bind which resolves local hostnames from my
> company. It doesn't connect to any DNS from Internet at all.
>
> Is it useful to set up DNSSC validation in order to avoid possible
> attacks (like cache poisoning or man in the middle) from my LAN ???
> Because I've read about this technique and it's too hard for
> implementing.
This is a risk analysis question which no one else can answer. From
a technical perspective DNSSEC can be used to secure the answers.
> Thanks a lot !!!
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list