1 / 9

RIPE Whois Database Software Recent Changes

RIPE Whois Database Software Recent Changes. Laura Cobley RIPE NCC. X.509 Support. Part of Improved Secure Communication System for RIPE NCC Members KEY-CERT class changed Update mechanisms updated E-mail supports S/MIME webupdates/syncupdates support client SSL certificates.

channer
Download Presentation

RIPE Whois Database Software Recent Changes

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. RIPE Whois Database SoftwareRecent Changes Laura Cobley RIPE NCC

  2. X.509 Support • Part of Improved Secure Communication System for RIPE NCC Members • KEY-CERT class changed • Update mechanisms updated • E-mail supports S/MIME • webupdates/syncupdates support client SSL certificates

  3. Organisation Object Type • Provides easy way of mapping resources • May be linked to any object type, by “org:” attribute • Queries • Lookup by handle or name • Inverse queries • Referenced organisations are returned by default • Initial organisation objects • IANA, RIR, LIR organisation objects • Updated INETNUM, INET6NUM, and AS-BLOCK

  4. Reverse DNS – the Old Way • DOMAIN objects, DNS zone files separate • E-mail auto-inaddr@ripe.net • Problems: • Separate interface for maintaining DNS • Direct database updates did not affect DNS • No support for web updates, X.509, etc. • Lack of full automation • Policy required significant work from LIRs

  5. Reverse DNS – the New Way • DOMAIN objects are the sole source. • DNS periodically rebuilt from the database. • E-mail to auto-dbm@ripe.net • Policy constraints reduced: • ALLOCATED space can be delegated • Non-LIR users can delegate space

  6. NONE Authentication Deprecated • Maintainers modified • “auth: NONE” removed • If necessary, password generated with MD5-PW • RIPE-NCC-NONE-MNT • Changed to RIPE-NCC-LOCKED-MNT • Special URL sent to contacts to create new maintainer • RIPE-NCC-RPSL-MNT • Password published in object

  7. Other Database Changes • CIDR notation for INETNUM creation supported • Prefix range lists for “mnt-routes:” implemented • Overlapping INETNUM objects prevented

  8. Contact, Further Information, etc. • RIPE Database Working Group: • http://www.ripe.net/ripe/wg/db/index.html • RIPE Whois Database Web Page: • http://www.ripe.net/db/ • RIPE-DBM: • ripe-dbm@ripe.net • DataBase Re-Implementation Project: • dbrip@ripe.net

More Related