Tag: DNS

Blog home

---

Impact of scanning on authoritative nameservers

By Pascal Huppert on 24 Jan 2025

Guest Post: Investigating the risks of DNS scanning for the DNS infrastructure.

[Podcast] RISKY BIZ-ness

By George Michaelson on 23 Jan 2025

Gautam Akiwate discusses his prize-winning paper on risks in the DNS supply chain.

Three of the best: George Michaelson

By Dan Fidler on 30 Dec 2024

In 2024, George Michaelson touched on topics ranging from news to explainers. Here are three of George’s best.

DNS nameservers

By Geoff Huston on 19 Dec 2024

How recursive resolvers handle DNS queries and how can administrators optimize nameservers for performance and resilience?

Zeros are heroes: NSEC3 parameter settings in the wild

By Cordian Daniluk on 12 Dec 2024

Guest Post: Do authoritative nameservers and resolvers follow best practices for NSEC3 settings?

Notes from DNS OARC 43

By Geoff Huston on 19 Nov 2024

DNS as an attack platform, privacy and anonymity, authoritative server performance, and more from OARC 43.

Web PKI: How to protect a popular security service?

By Pouyan Fotouhi Tehrani on 2 Oct 2024

Guest Post: Lessons learned from a study on the interrelation of CAA, CT, and DANE in web PKI deployments.

[Podcast] Privacy and DNS Client Subnet

By George Michaelson on 19 Sep 2024

Geoff discusses EDNS0 client subnet signaling, how it affects traffic steering by the CDN, and the labs measurements.

[Podcast] The APNIC Labs measurement system

By George Michaelson on 5 Sep 2024

Joao Damas explains how the APNIC Labs measurement system works.

[Podcast] EDNS and UDP

By George Michaelson on 22 Aug 2024

Investigating the EDNS0 option for DNS, focusing on the specified maximum UDP packet size and its practical implications in the modern Internet.

Top