Click here for books on. DNS-&-BIND
Click Here!

Sunday, November 9, 2008

Secret Keys of dns

Secret Keys of dns and bind
Secret Key Transaction Authentication for DNS (TSIG)
Protocol was developed to provide a lightweight authentication and
Integrity of messages between two DNS entities, such as client and
Server or server and server
TSIG record is sent without a secure key that code is executed which does not check the bounds of the data before storing it into a variable
“So don’t get in a pickle”



TSIG 'variables' RFC 2845

TSIG RR--- NAME Key name, in canonical wire format text
TSIG RR--- CLASS (Always ANY in the current specification)
TSIG RR--- TTL (Always 0 in the current specification)
TSIG RR RDLEN---
TSIG RDATA MAC---
TSIG RDATA--- Algorithm Name in canonical wire format strings encoded . using the syntax
TSIG RDATA--- Time Signed in network byte order
TSIG RDATA--- Fudge in network byte order 300
TSIG RDATA--- Error in network byte order 0 (NOERROR)
TSIG RDATA--- Other Len in network byte order 0
TSIG RDATA--- Other Data exactly as transmitted

Now read about Language: Python
Posted by baguio_city at 1:45 PM
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

How to get more website traffic...!

This is a banner exchange program was one of the first sites to offer this on the net. Its knot a hard site to tackle at all, fast to join up and “It is also 100 percent FREE”. It shows you your traffic figures for each hour – day – mouth. Just make a banner gif format 468x60, smaller than 15 KB. You will get a 4 to 3 Impressions ratio and 5 percent Credits earnings from referrals. All in all I am very happy with this banner site. So CLICK THE BANNER AND JOIN NOW..!

DNSSEC Deployment Options

Download BIND 9.3.5-P2-W2

BIND 9.3.5-P2-W2

BIND 9.3 is a previous major release. It is still supported, and bug fixes and security fixes will be made available as minor releases. No new features will be added.

Some of the important features of BIND 9 are: •DNS Security ?DNSSEC (signed zones) ?TSIG (signed DNS requests) •IP version 6 ?Answers DNS queries on IPv6 sockets ?IPv6 resource records (AAAA, DNAME, etc.) ?Experimental IPv6 Resolver Library •DNS Protocol Enhancements ?IXFR, DDNS, Notify, EDNS0 ?Improved standards conformance •Views ?One server process can provide multiple "views" of the DNS namespace, e.g. an "inside" view to certain clients, and an "outside" view to others. •Multiprocessor Support •Improved Portability Architecture

Downloading: BIND 9.3.5-P2-W2 Windows XP/2003/2008 Binary Kit
Click here for books on. DNS-&-BIND

Description The fifth edition covers BIND 9.3.2, the most recent release of the BIND 9 series, as well as BIND 8.4.7. BIND 9.3.2 contains further improvements in security and IPv6 support, and important new features such as internationalized domain names, ENUM (electronic numbering), and SPF (the Sender Policy Framework). Whether you're an administrator involved with DNS on a daily basis or a user who wants to be more informed about the Internet and how it works, you'll find that this book is essential reading.

Description The fourth edition of DNS and BIND covers the new 9.1.0 and 8.2.3 versions of BIND as well as the older 4.9 version. There's also more extensive coverage of NOTIFY, IPv6 forward and reverse mapping, transaction signatures, and the new DNS Security Extensions; and a section on accommodating Windows 2000 clients, servers and Domain Controllers.

Description The DNS & BIND Cookbook presents solutions to the many problems faced by network administrators responsible for a name server. This title is an indispensable companion to DNS & BIND, 4th Edition, the definitive guide to the critical task of name server administration. The cookbook contains dozens of code recipes showing solutions to everyday problems, ranging from simple questions, like, "How do I get BIND?" to more advanced topics like providing name service for IPv6 addresses.

Description DNS on Windows Server 20003 is a special Windows-oriented edition of the classic DNS and BIND, updated to document the many changes to DNS, large and small, found in Windows Server 2003. Veteran O'Reilly authors, Cricket Liu, Matt Larson, and Robbie Allen explain the whole system in terms of the new Windows Server 2003, from starting and stopping a DNS service to establishing an organization's namespace in the global hierarchy.

Description This special Windows-oriented edition of the classic DNS and BIND is a guide to one of the Internet's fundamental building blocks: the distributed host information database responsible for translating names into addresses, routing mail, and many other services. Covers server setup and maintenance along with Windows-specific topics like integration between DNS and Active Directory, conversion from BIND to the Microsoft DNS server, and registry settings.

This Open Source Guide is about DNS and (mostly) BIND 9.x on Linux (Fedora Core), BSD's (FreeBSD, OpenBSD and NetBSD) and Windows (Win 2K, XP, Server 2003). It is meant for newbies, Rocket Scientist wannabees and anyone in between. This Guide was born out of our first attempts a number of years ago at trying to install a much needed DNS service on an early Redhat Linux system. We completed the DNS 'rite of passage' and found it a pretty unedifying and pointless experience.

The Concise Guide to DNS and BIND provides you with the technical depth and expert-level information you need to understand and administer DNS and BIND. Domain Name System (DNS) is a distributed Internet directory service. It is used mainly to translate between domain names and IP addresses, and to control Internet email delivery. Most Internet services rely on DNS to work, and if DNS fails, Web sites cannot be located and email delivery stalls. BIND (Berkeley Internet Name Daemon) is an implementation of the Domain Name System (DNS) protocols.

The BIND 9 DNS Administration Reference Book is based on Internet Systems Consortium's BIND 9 documentation including the Administrator Reference Manual (Bv9ARM). In addition to hundreds of improvements (most integrated upstream) and major reorganization of the original documentation, new content, examples, detailed indexing and more cross-referencing were added. This book is an excellent resource which provides a convenient way to find BIND 9 documentation and to learn DNS basics.

Dru Lavigne's new book is simply the best FreeBSD how-to book out there. This book is well written with specific instruction on how to make things work. Make no mistake about it.....Whether you are a novice or a system administrator, you need this book in your library. Unlike other FreeBSD books out there which basically copy the online handbook, Dru Lavigne compiled literally hundreds of FreeBSD tricks in this new book. You won't be disappointed!

web links

Powered by WebRing.