On 2 jul 2010, at 17.11, Andrew Sullivan wrote:
> It may surprise you to learn that there are users who do not find the
> user interface for these tools, or the idea of cutting and pasting
> into BIND config files, even slightly intuitive. I've personally
> encountered situations where it took we
On 2 jul 2010, at 09.13, Wolfgang Nagele wrote:
> Maybe i am missing something here, but with the publication method you also
> have
> the bootstrap that has to happen out-of-band. Meaning i as a child will always
> have to provide my parent in a secure way (which is not established by then)
> wi
Hi,
> It may surprise you to learn that there are users who do not find the
> user interface for these tools, or the idea of cutting and pasting
> into BIND config files, even slightly intuitive. I've personally
> encountered situations where it took weeks to set up TSIG between two
> servers. A
On Fri, Jul 02, 2010 at 05:42:15PM +1000, Mark Andrews wrote:
> I regularly use TSIG today between my master server and the slave
> servers for my zones operated by other parties. TSIG really isn't
> a hard thing to setup or use.
It may surprise you to learn that there are users who do not find t
- Original Message -
From: "Wolfgang Nagele"
To: "George Barwood"
Cc: "Mark Andrews" ;
Sent: Friday, July 02, 2010 8:13 AM
Subject: Re: [DNSOP] Fwd: New Version
Notificationfordraft-mekking-dnsop-auto-cpsync-00
>> This implies extra infrastructu
In message , "George Barwood" writes:
> - Original Message -
> From: "Mark Andrews"
> To: "Shane Kerr"
> Cc: "Wolfgang Nagele" ;
> Sent: Friday, July 02, 2010 4:42 AM
> Subject: Re: [DNSOP] Fwd: New Version
> Notificationf
Hi,
> This implies extra infrastructure to generate and securely transmit
> between
> the parent and child, and administrative activity to set this up somehow.
>
> The publication method does not imply any administrative action other than
> updating
> the DNS software and activating the DNSSEC
- Original Message -
From: "Mark Andrews"
To: "Shane Kerr"
Cc: "Wolfgang Nagele" ;
Sent: Friday, July 02, 2010 4:42 AM
Subject: Re: [DNSOP] Fwd: New Version
Notificationfordraft-mekking-dnsop-auto-cpsync-00
[snip]
>> I do think that George'
On Wed, 30 Jun 2010, Stephan Lagerholm wrote:
>
> What I like about your approach is the fact that is takes advantage of
> DNSSEC. My opinion is that if DNSSEC is so great it would be cool if we
> can define an update mechanism that utilizes it. This could be the first
> real world application for
- Original Message -
From: "Stephan Lagerholm"
To: "George Barwood" ;
Sent: Wednesday, June 30, 2010 2:25 PM
Subject: RE: [DNSOP] Fwd: New Version
Notificationfordraft-mekking-dnsop-auto-cpsync-00
> I would encourage some type of notification mechanism so th
2010 5:37 AM
> To: Matthijs Mekking; dnsop@ietf.org
> Subject: Re: [DNSOP] Fwd: New Version
Notificationfordraft-mekking-dnsop-
> auto-cpsync-00
>
> I'd like to encourage some discussion of the relative merits of the
UPDATE
> approach
>
> http://www.ietf.org/id/draft-mek
11 matches
Mail list logo
