In message <[email protected]> Michael Richardson writes: > > >>>>> "Curtis" == Curtis Villamizar <[email protected]> writes: > Curtis> Neither KARP, as defined, or DNSSEC, are candidates for zero > Curtis> configuration. If the user can configure KARP and DNSSEC > Curtis> they are perfectly capable of using a backdoor, like ssh, to > Curtis> set the time of day after a reboot that lost time-of-day. > > huh? > DNSSEC just requires the . key be distributed in the router's firmware.
duh. I'm thinking about acting as a NS and signing the zone. Never mind. For DNSSEC resolver no configuration is needed. For that purpose getting time of day through NTP or even timed (not suggesting timed) would be fine. Curtis _______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
