[Kea-users] TSIG 'secret' is NOT SECURE
Peter Davies
peterd at isc.org
Thu Apr 30 07:04:24 UTC 2026
Hi Ralf,
There is no syntax for the secret file; just create a file containing
the
TSIG secret and add the "secret-file" parameter to the TSIG definition
in your
kea-dhcp-ddns config file.
"secret-file": "/usr/local/share/kea/d2-sha1-secret"
There is an example of its use in doc/examples/ddns/all-keys.json
/Peter
On 30/04/2026 07.57, Ralf Figge via Kea-users wrote:
> use of clear text TSIG
--
Peter Davies
Support Engineer
Internet Systems Corporation
More information about the Kea-users
mailing list