BIND 10 #813: TSIG: verifying messages
BIND 10 Development
do-not-reply at isc.org
Wed May 4 10:02:50 UTC 2011
#813: TSIG: verifying messages
-------------------------------------+-------------------------------------
Reporter: | Owner: jinmei
stephen | Status: reviewing
Type: | Milestone:
enhancement | Sprint-20110517
Priority: major | Resolution:
Component: | Sensitive: 0
Unclassified | Sub-Project: DNS
Keywords: | Estimated Difficulty: 4.0
Defect Severity: N/A | Total Hours: 0
Feature Depending on Ticket: tsig |
Add Hours to Ticket: 0 |
Internal?: 0 |
-------------------------------------+-------------------------------------
Changes (by vorner):
* owner: vorner => jinmei
Comment:
Hello
I made few typo and style fixes. Otherwise the code looks clear.
But I have a question ‒ you accept TSIG only at the end of the message.
But there was something with signing of the stream when there's zone
transfer. Just to make sure, the stream is split into multiple messages
and the TSIGs are on some of the messages and they cover all the preceding
messages, so TSIG will be at the end of message here as well, right?
(quick google for „TSIG zone transfer“ isn't very helpful this morning)
So, if this is how the transfer works, I think it is safe to be merged
(provided the branch this is based on is reviewed already).
Thanks
--
Ticket URL: <http://bind10.isc.org/ticket/813#comment:8>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list