is DDNS for me?
Maximo Ramos
maximo at violadores.org
Thu Apr 5 01:06:56 UTC 2001
Hi!!
ok, it is my understanding that for security reasons I should created
a subzone like "dyn.mydomain.com" and allow *only* my friend to update
certain records in that zone. I got it.
now, he is not just a friend, he is MY friend :) so it would be ok to
share the secret key TSIG with him.
thanks for all your responses, but as in my other post, I am not clear
about what program he may use to update "dyn.domain.com" and in what
operating systems.
Best regards to all!
On Thu, Apr 05, 2001 at 02:00:34AM +0200, Brad Knowles wrote:
>
> At 12:21 AM +0100 4/5/01, Jim Reid wrote:
>
> > But these authenticated
> > requests still allow a trusted client to add, change or remove just
> > about anything in a dynamically updated zone. Finer granularity of
> > control is possible with BIND9's update-policy{} clause. If need be a
> > client can be given permission to only change a specific name and RR
> > type.
>
> Really cool. As soon as I get some money flowing in, so I can
> afford to have my own box at a co-lo facility, I'll be installing
> BINDv9 and playing with a lot of these features.
>
> Thanks!
>
> --
> Brad Knowles, <brad.knowles at skynet.be>
>
> /* efdtt.c Author: Charles M. Hannum <root at ihack.net> */
> /* Represented as 1045 digit prime number by Phil Carmody */
> /* Prime as DNS cname chain by Roy Arends and Walter Belgers */
> /* */
> /* Usage is: cat title-key scrambled.vob | efdtt >clear.vob */
> /* where title-key = "153 2 8 105 225" or other similar 5-byte key */
>
> dig decss.friet.org|perl -ne'if(/^x/){s/[x.]//g;print pack(H124,$_)}'
--
----------------------------------------------------
Maximo Ramos
More information about the bind-users
mailing list