dnssec – DnsSec.au

How to keep your keys secure and private

I am running my DNS server on 3 external VPS servers. One of them was set up to be the primary DNS server and would in addition to the zone files contain the DNSSEC private keys. This is not optimal. Having your DNSSEC keys on a server external to your location means that they can… Continue reading How to keep your keys secure and private

Welcome to dnssec.au

This site will contain the information needed to configure bind9.18 or later to use DNSSEC to protect your DNS domain(s)

Bind configuration

You got your domain, what now? This guide presumes that you got your domain set up in bind and that the configuration is working without DNSSEC configured. My configuration example is for the dnssec.au domain and the zone files are stored in /var/named/primary/ and the DNSSEC keys will be stored in /var/named/keys Here is my… Continue reading Bind configuration

What is DNSSEC

DNSSEC is a protocol that allows a domain owner to cryptographically sign the information in the zone so that a client can be sure that the information retrieved from the DNS servers has not been altered while in transit on the internet. This makes it virtually impossible for anyone else to alter the information in… Continue reading What is DNSSEC