vbrandl/vbrandl.net
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Releases Wiki Activity

Fix formatting

Browse Source
This commit is contained in:
Valentin Brandl 2018-07-15 22:54:08 +02:00
parent 0b11e5a944
commit 297b0b3102
Signed by: vbrandl
GPG Key ID: CAD4DA1A789125F9
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
content/post/bind9-api.md
View File

@ -70,9 +70,9 @@ API but this still does not protect against replay attacks. If an
attacker managed to intercept an request to the API, (s)he would be
able to resend the same request to the server and re-execute the
command. To prevent this, the API server has to be placed behind a
reverse proxy like [nginx][11] to encrypt the requests using TLS or as I am
doing it, make the server listen on a private IP address inside an
encrypted VLAN ([tinc][1] in my case).
reverse proxy like [nginx][11] to encrypt the requests using TLS or as
I am doing it, make the server listen on a private IP address inside
an encrypted VLAN ([tinc][1] in my case).
Once the body was verified using the pre-shared secret `nsupdate` is
invoked and the following update or delete scripts are passed via