Ferret: Automatically finding RFC compliance bugs in DNS nameservers
Guest Post: New open-source tool identifies 30 unique bugs across popular DNS implementations like Bind, Knot, NSD, and PowerDNS.
Tag: DNS
DNS abuse trends
Guest Post: Global sum of DNS abuse dropped in absolute terms and normalized rates, ICANN reports.
More mysterious DNS root query traffic from a large cloud/DNS operator
Guest Post: Learn how the team at Verisign solved the mysterious case of the Google’s prepending nonce labels.
[Podcast] Why a resolverless DNS makes sense
PING E15: Server push, combined with DNSSEC could help make DNS resolvers a thing of the past.
The path to resolverless DNS
Making sense of resolverless name resolution.
Open DNS resolvers, from bad to worse
Guest Post: 80% of DDoS attacks can be reduced by patching 20% of open DNS resolvers.
Tracing the DDoS attack ecosystem from the Internet core
Guest Post: New method observes DDoS intensity by measuring infrastructure involved in attacks using IXPs.
The Hijackers Guide to the Galaxy: Off-path taking over Internet resources
Guest Post: Are current practices of managing IP addresses, domains, certificates, and virtual platforms insecure?
Event Wrap: APAC DNS Forum
Geoff Huston shared insights on the future of the DNS at the APAC DNS Forum, held online from 30 March to 1 April 2022.
DNS topics at IETF 113
Handling resolution failure, truncated responses, stateful hash-based DNSSEC signatures, and more.