fedora
play

Fedora and DNSSEC Presented by Paul Wouters Fedora Packager, - PowerPoint PPT Presentation

Feb 13, 2023 •587 likes •671 views

Fedora and DNSSEC Presented by Paul Wouters Fedora Packager, DNSSEC Advisor Creative Commons Attribution 3.0 https://fedoraproject.org/ What is Fedora Fedora is a fast, stable, and powerful

  1. Fedora and DNSSEC Presented by Paul Wouters Fedora Packager, DNSSEC Advisor Creative Commons Attribution 3.0 https://fedoraproject.org/

  2. What is Fedora Fedora is a fast, stable, and powerful operating system for everyday use built by a worldwide community of friends. It's completely free to use, share, modify Innovative, Cutting edge, Leading 25,000 packages, 250,000 contributors Forms the basis for Red Hat Enterprise Linux (RHEL) but also CentOS, OLPC, Moblin, etc

  3. DNSSEC packages in Fedora Servers: bind9, nsd, unbound, powerdns Tools: ldns, libunbound, dnssec-tools, sshfp, autotrust, bind-pkcs11, OpenCryptoki, perl-Net-DNS-SEC Non-Fedora addons: Sun SCA 6000 HSM drivers for Linux kernel Firefox DNSSEC labs.nic.cz (Tools->Extensions) SPARTA patches for native DNSSEC in Firefox,Postfix, Sendmail, ejabberd, gaim,etc

  4. DNSSEC with Fedora March 2009: unbound and bind ship with TLD trust anchors and DNSSEC & DLV validation enabled per default (Fedora 11) February 2010: RIPE DDoS incident in some branches of Fedora due to stale RIPE keys (AKA “Rollover or die” incident) December 2010: Ship DNSSEC root key for bind and unbound. Phased out all shipped TLD trust anchors and stopped using dnssec-conf. DLV still enabled.

  5. DNSSEC with Fedora Fedora domains signed with DNSSEC since March 12, 2010 (fedoraproject.org, fedorahosted.org, etc) Signing using custom script based on bind's dnssec-signzone, keys restricted to ops DNSSEC keys are published in the DLV DS record support from Fedora's domain Registrar is expected soon Two auth name servers sign zones, with different Bind Views for GEO-IPS

  6. DNSSEC developments DNSSEC resolving for all Fedora installs NetworkManager integration, compatible with virt- manager/KVM (currently dnsmasq) Should use DHCP obtained caching name server as forwarder (only unbound can do this – not bind) What to do when ISP DNS is broken? TLSA / HASTLS support tool (IETF DANE) SSL certificate validation via DNSSEC (without CAs) opendnssec support (dependancy packaging) fix ssh client VerifyHostKeyDNS=ask

  7. Questions ? Contact: Paul Wouters pwouters@fedoraproject.org paul@xelerance.com Creative Commons Attribution 3.0 https://fedoraproject.org/

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Fedora 28 Release Party (Beijing) Whats new in Fedora 28 & introduction to Fedora and

Fedora 28 Release Party (Beijing) Whats new in Fedora 28 & introduction to Fedora and

Fedora 28 Release Party (Beijing) Whats new in Fedora 28 & introduction to Fedora and FZUG Pany About me Fedora L10n Fedora Zhongwen(Chinese) User Group FAS pany pany@FedoraProject.org Today's topic Whats new in

548 views • 35 slides
R packages from a Fedora perspective Jos Matos jamatos@{fep.up.pt, fedoraproject.org}

R packages from a Fedora perspective Jos Matos jamatos@{fep.up.pt, fedoraproject.org}

Introduction Fedora Fedora and R Conclusions R packages from a Fedora perspective Jos Matos jamatos@{fep.up.pt, fedoraproject.org} (Mathematics Research Center, Economics School) Porto University and Fedora Project 12 August 2008 useR!

502 views • 21 slides
Fedora Students Contributing Fedora KDE Netbook Remix Presented by Aditya Patawari Fedora

Fedora Students Contributing Fedora KDE Netbook Remix Presented by Aditya Patawari Fedora

Fedora Students Contributing Fedora KDE Netbook Remix Presented by Aditya Patawari Fedora Ambassador, Packager and Netbook Remix Maintainer This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License. T opics

411 views • 12 slides
Migrating from Fedora 3 to 4 Now With More Hydra Goals for the Session Understand the basic

Migrating from Fedora 3 to 4 Now With More Hydra Goals for the Session Understand the basic

Migrating from Fedora 3 to 4 Now With More Hydra Goals for the Session Understand the basic conceptual models underlying Fedora 3/CMA, Fedora 4, and PCDM Work through a rudimentary migration exercise with Hydra/Fedora-Migrate Explore

906 views • 63 slides
How to test Fedora updates with your custom CI who am i Aleksandra Fedorova aka bookwar

How to test Fedora updates with your custom CI who am i Aleksandra Fedorova aka bookwar

How to test Fedora updates with your custom CI who am i Aleksandra Fedorova aka bookwar Build/DevOps/CI Engineer Fedora contributor for >10 years Former member of FESCo Current member of Fedora Council Member of Fedora

371 views • 19 slides
GPIO as a character device or Fedora on wheels who am i Aleksandra Fedorova CI Engineer at Red

GPIO as a character device or Fedora on wheels who am i Aleksandra Fedorova CI Engineer at Red

GPIO as a character device or Fedora on wheels who am i Aleksandra Fedorova CI Engineer at Red Hat Fedora Ambassador and member of FESCo https://quantum-integration.org Fedora User Group NRW @ Meetup.com bookwar @ IRC

661 views • 21 slides
Fedora Astronomy The benefits for astronomical software from integration into Linux distributions

Fedora Astronomy The benefits for astronomical software from integration into Linux distributions

Fedora Astronomy The benefits for astronomical software from integration into Linux distributions Christian Dersch AG Astronomie, Philipps-Universitt Marburg June 27, 2018 History of Fedora Astronomy 2003 Fedora has been founded, successor

723 views • 17 slides
Introduction to Fedora 4 Features Learning Outcomes Understand the purpose of a Fedora

Introduction to Fedora 4 Features Learning Outcomes Understand the purpose of a Fedora

Introduction to Fedora 4 Features Learning Outcomes Understand the purpose of a Fedora repository Understand the core features of the software What is a Fedora Repository? Secure software that stores, preserves, and provides access to digital

869 views • 66 slides
Fedora Classroom Writing Fedora documentation 101 Presented by Adam Samalik Agenda

Fedora Classroom Writing Fedora documentation 101 Presented by Adam Samalik Agenda

Fedora Classroom Writing Fedora documentation 101 Presented by Adam Samalik Agenda Introduction The new site Antora The build engine Git The source control How The complete workflow Q&A Introduction The

349 views • 23 slides
Projeto Fedora Fbio Oliv Embaixador do Projeto Fedora no Brasil (fabio.olive@gmail.com)

Projeto Fedora Fbio Oliv Embaixador do Projeto Fedora no Brasil (fabio.olive@gmail.com)

Projeto Fedora Fbio Oliv Embaixador do Projeto Fedora no Brasil (fabio.olive@gmail.com) Baseado em apresentaes de Sergio Durigan Jr. e Paul W. Frields This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported

494 views • 20 slides
Introduction to Fedora Overview, examples, and core features David Wilcox, DuraSpace @d_wilcox

Introduction to Fedora Overview, examples, and core features David Wilcox, DuraSpace @d_wilcox

Introduction to Fedora Overview, examples, and core features David Wilcox, DuraSpace @d_wilcox Learning Outcomes Understand the purpose of a Fedora repository Learn what Fedora can do for you Understand the key capabilities of the software

840 views • 55 slides
Fedora Project From a community to an Operating System Fabio Alessandro Locati 27 October 2016

Fedora Project From a community to an Operating System Fabio Alessandro Locati 27 October 2016

Fedora Project From a community to an Operating System Fabio Alessandro Locati 27 October 2016 Outline Intro Fedora Project Fedora Intro Ambassador Infrastructure administrator Packager Pacakging Sponsor Linux user since

1.11k views • 57 slides
Atomic Workstation Kalev Lember, Red Hat desktop team DevConf.cz 2018 What is Fedora Atomic

Atomic Workstation Kalev Lember, Red Hat desktop team DevConf.cz 2018 What is Fedora Atomic

Atomic Workstation Kalev Lember, Red Hat desktop team DevConf.cz 2018 What is Fedora Atomic Workstation? Regular Fedora, based on RPMs Shipped in a different way Atomic Workstation: changing the way we ship Fedora Workstation Base

943 views • 12 slides
fedpkg Maintaining packages in Fedora PRESENTED BY: Karel Kl Creative Commons Attribution

fedpkg Maintaining packages in Fedora PRESENTED BY: Karel Kl Creative Commons Attribution

fedpkg Maintaining packages in Fedora PRESENTED BY: Karel Kl Creative Commons Attribution 3.0 T oday's T opics The fedpkg tool Exploring packages Updating a package Backporting changes to older Fedora releases Teamwork

561 views • 22 slides
Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy

Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy

Virtualization in Fedora Virtualization in Fedora (KVM based) (KVM based) Kashyap Chamarthy Kashyap Chamarthy kashyapc@fedoraproject.org kashyapc@fedoraproject.org Outline 1/ Virtualization at a glance 2/ Overview of KVM based Virt 3/

151 views • 13 slides
Ensuring ABI stability in Fedora P r e s e n t e d b y , D o d j i S e k e t

Ensuring ABI stability in Fedora P r e s e n t e d b y , D o d j i S e k e t

Flock 2016 Ensuring ABI stability in Fedora P r e s e n t e d b y , D o d j i S e k e t e l i < d o d j i @f e d o r a p r o j e c t . o r g > S i n n y K u ma r i < s i n n

317 views • 16 slides
Lowering the entry barrier for INSPIRE compliant Web Services Paolo Viskanic

Lowering the entry barrier for INSPIRE compliant Web Services Paolo Viskanic

Lowering the entry barrier for INSPIRE compliant Web Services Paolo Viskanic (paolo.viskanic@r3-gis.com) GWF 2013 Leveraging SMEs Strength for INSPIRE 16/05/2013 Content Who is R3 GIS? The FreeGIS.net Project Project

386 views • 21 slides
ADAPTIVE TRANSPORTATION MEE EET OUR S STAFF Transportation Coordinator: Christa

ADAPTIVE TRANSPORTATION MEE EET OUR S STAFF Transportation Coordinator: Christa

CENTER FOR STUDENTS WITH DISABILITIES ADAPTIVE TRANSPORTATION MEE EET OUR S STAFF Transportation Coordinator: Christa Undergrad Assistant: Amy and Shannon Van Drivers: Brenna, Luke, Zach, Dusty, Billy, Lindsey, Shannon, Alexis,

472 views • 21 slides
International Travel Parent Meeting March 11, 2020 Welcome & Introductions Calvin Davies

International Travel Parent Meeting March 11, 2020 Welcome & Introductions Calvin Davies

International Travel Parent Meeting March 11, 2020 Welcome & Introductions Calvin Davies - Education Director, Off-Site Chris White Manager, Corporate Risk and Security Ann Ard Education Director Area 5 Werner Mailandt

284 views • 11 slides
ASSOCIA OCIATION TION MA MANA NA MANA MANA association was funded in 1998 in Bordeaux.

ASSOCIA OCIATION TION MA MANA NA MANA MANA association was funded in 1998 in Bordeaux.

ASSOCIA OCIATION TION MA MANA NA MANA MANA association was funded in 1998 in Bordeaux. MANA is a polysemous Polynesian term studied by Mauss, who indicates "the power and the chance of any successful, human or cosmic, magic or

814 views • 14 slides
Orchestra)ng Containers with Consul and Terraform Mitchell Hashimoto @mitchellh

Orchestra)ng Containers with Consul and Terraform Mitchell Hashimoto @mitchellh

Orchestra)ng Containers with Consul and Terraform Mitchell Hashimoto @mitchellh ORCHESTRATION? Why is it needed? What is it? ORCHESTRATION Do some set of ac)ons, to a set of things, in a

1.47k views • 70 slides
1HY-2010 FINANCIAL RESULTS Investor and analyst presentation October 2010 0 IMPORTANT NOTICE

1HY-2010 FINANCIAL RESULTS Investor and analyst presentation October 2010 0 IMPORTANT NOTICE

1HY-2010 FINANCIAL RESULTS Investor and analyst presentation October 2010 0 IMPORTANT NOTICE (Disclaimer) This presentation has been prepared by OJSC Protek (the "Company"). By attending the meeting where the presentation is made, or

146 views • 10 slides
Air-water interaction in bottom outlets An ambition within SVC the Swedish Hydropower Centre

Air-water interaction in bottom outlets An ambition within SVC the Swedish Hydropower Centre

Air-water interaction in bottom outlets An ambition within SVC the Swedish Hydropower Centre Patrik Andreasson 2009-05-14 (partly in Swedish) Svenskt Vattenkraftscentrum Vattenturbiner och generatorer Vattenbyggnad

295 views • 10 slides
Crop 2018 Viking Malt Countries All Viking Malt countries have been together with other countries

Crop 2018 Viking Malt Countries All Viking Malt countries have been together with other countries

Malting Barley Crop 2018 Viking Malt Countries All Viking Malt countries have been together with other countries hidden av a severe drought under the summer 2018. The malting barley did the right thing and was setting fewer and shorter ears

501 views • 9 slides

More recommend