[dns-operations] What would it take...
Mark Andrews
marka at isc.org
Thu Mar 12 06:54:15 UTC 2015
In message <55007BEA.90300 at dougbarton.us>, Doug Barton writes:
> On 3/11/15 1:38 AM, Paul Vixie wrote:
> >>Tsig won't scale for something like this. Please consider sig0.
>
> Neither solves the problem of authenticating the entity which is sending
> the DS update.
Doug please explain this claim. Presumably you wouldn't accept a
username / password pair into a web form or a CERT to authenticate
a update using a web form because as far as I can see both of those
are equivalent to TSIG and SIG(0) respectively.
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the dns-operations
mailing list