> You hit the nail on the head. I should have thought to test shorter
> keys. I was using a 32-byte key. Just tested with 28 bytes and the
> problem does indeed go away with the shorter key.
Excellent.
> > If that's the problem, I can give you a workaround for the long key.
>
> I would very much
On 2010-01-09 07:44, Evan Hunt wrote:
>> Has anyone else tried to communicate with TSIG using HMAC-SHA224 between
>> BIND and other DNS implementations?
>
> We've recently found out about an interoperability flaw affecting all the
> HMAC-SHA* algorithms; it affects any key with a secret longer th
Sorry, just to mention in addition that I currently run a master/slave
configuration for internal DNS queries within the NAT! Since the current
location of servers has only one static IP available I have only exposed
one of the servers to the web but in the new location I plan to get as
many IP
Hi all,
this is the first time I'm going to be playing around with a setup like
this so I'd like to get some advice:
I would like to run a master/slave configuration of Bind servers but am
confused about how to implement such a setup and the underlying network
fabric involved!!
First up, c
4 matches
Mail list logo
