[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DNSSEC and IPsec

To: Jac Kloots <Jac.Kloots@sec.nl>
Subject: Re: DNSSEC and IPsec
From: Sandy Harris <sandy@storm.ca>
Date: Wed, 09 Feb 2000 07:35:44 -0500
CC: ipsec@lists.tislabs.com
References: <20000209062300.43ADDACAE2@smb.research.att.com> <38A12558.6313A41B@sec.nl>
Sender: owner-ipsec@lists.tislabs.com

Jac Kloots wrote:

> I was reading some notes about the NANOG meeting from last week and
> noticed something about BIND9 and it's full implementation of DNSSEC. As
> I remember well from reading about DNSSEC, it included some
> authentication information for hosts.
> 
> My question to this group is, Are there any IPsec implementations which
> use the DNSSEC information for authentication?

We don't do it in the current release, but that is certainly on the
agenda, and a fairly high priority, for FreeS/WAN.

http://www.freeswan.org

Follow-Ups:

Re: DNSSEC and IPsec

From: Jac Kloots <Jac.Kloots@sec.nl>

References:

Re: ???????????????

From: "Steven M. Bellovin" <smb@research.att.com>

DNSSEC and IPsec

From: Jac Kloots <Jac.Kloots@sec.nl>

Prev by Date: Re: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
Next by Date: Re: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
Prev by thread: DNSSEC and IPsec
Next by thread: Re: DNSSEC and IPsec
Index(es):
- Main
- Thread