"stealth master" DNS Security
Kevin Darcy
kcd at chrysler.com
Fri Mar 27 23:13:51 UTC 2009
John Wobus wrote:
> On Mar 25, 2009, at 5:20 AM, Ram Akuka wrote:
>>
>> Is there’s any way I can encrypt the zone files in the slave server,
>> that way no one can have access to the actual zone data beside the
>> master server.
>> (if for example someone will hack to the slave DNS he won’t have the
>> zones data).
>>
> No.
To further elaborate: file-level encryption and encrypted filesystems
exist, of course, but whether and/or how one uses them isn't really
on-topic for a DNS/BIND list, unless one is hoping that there is code in
BIND to support such use, which AFAIK there isn't.
- Kevin
More information about the bind-users
mailing list