Doesn't SPF and the general increase in the likelihood of DNS attack
necessitate signing zone files?
We haven't done so yet because of the performance cost. Albitz and Liu
paint a pretty daunting picture in their book (DNS and BIND, 4th ed. pp
362-363).
Are you folks already signing? Are you planning to?
--
eric
necessitate signing zone files?
We haven't done so yet because of the performance cost. Albitz and Liu
paint a pretty daunting picture in their book (DNS and BIND, 4th ed. pp
362-363).
Are you folks already signing? Are you planning to?
--
eric