Bind Security: Transaction Signatures (TSIG) Configuration

[ Thanks to An Anonymous Reader for this link. ]

"Transaction signatures (TSIG) is a mechanism used to secure DNS messages and to provide secure server-to-server communication. This includes zone transfer, notify, and recursive query messages. TSIG uses shared secrets and a one-way hash function to authenticate DNS messages, particularly responses and updates.

"This tutorial discusses the security mechanisms implemented in BIND to secure DNS messages and name servers using TSIG configurations."

Complete Story

Related Stories:

• Coalition to Secure DNS Takes Shape(Dec 08, 2008)
• Speeding Up DNS Access In Regions With Very Low Infrastructure(Nov 07, 2008)
• Using Dnsmasq for DNS and DHCP Services(Nov 04, 2008)
• DNS Hijacking, ISP Packet Modification, Morals and Privacy(Oct 01, 2008)
• Revealed: The Internet's Biggest Security Hole(Aug 27, 2008)