Journeying into XDP: XDPerimenting with DNS telemetry
Guest Post: Learn how to plot graphs of DNS metrics without altering the DNS packets or touching the DNS software itself.
Tag: DNS
Unpacking zero-knowledge middleboxes
Guest Post: Zero-knowledge middleboxes let users encrypt their traffic while still enabling operators to enforce policies.
Unpacking RFC 9199: Considerations for large authoritative server operators
Guest Post: RFC 9199 presents considerations to improve the security, resilience, and performance for large authoritative DNS server operators.
Investigating DNS abuse in Japan
Guest Post: Two DNS-related incidents that we see a lot in Japan are phishing sites and domain hijackings.
Ferret: Automatically finding RFC compliance bugs in DNS nameservers
Guest Post: New open-source tool identifies 30 unique bugs across popular DNS implementations like Bind, Knot, NSD, and PowerDNS.
DNS abuse trends
Guest Post: Global sum of DNS abuse dropped in absolute terms and normalized rates, ICANN reports.
More mysterious DNS root query traffic from a large cloud/DNS operator
Guest Post: Learn how the team at Verisign solved the mysterious case of the Google’s prepending nonce labels.
[Podcast] Why a resolverless DNS makes sense
PING E15: Server push, combined with DNSSEC could help make DNS resolvers a thing of the past.
The path to resolverless DNS
Making sense of resolverless name resolution.
Open DNS resolvers, from bad to worse
Guest Post: 80% of DDoS attacks can be reduced by patching 20% of open DNS resolvers.