DNSSEC validation for a local Bind

Mark Andrews marka at isc.org
Thu Apr 17 01:39:32 UTC 2014

In message <CAG2Qp6uER-5yJNZV3+0CgM2cV1SC6R-3isWzy6H0iKyd+jwR3Q at mail.gmail.com>
, Roberto Carna writes:
> Dear, I have a local Bind which resolves local hostnames from my
> company. It doesn't connect to any DNS from Internet at all.
> Is it useful to set up DNSSC validation in order to avoid possible
> attacks (like cache poisoning or man in the middle) from my LAN ???
> Because I've read about this technique and it's too hard for
> implementing.
This is a risk analysis question which no one else can answer.  From
a technical perspective DNSSEC can be used to secure the answers.

> Thanks a lot !!!
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
>  from this list
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

More information about the bind-users mailing list