Notes from DNS-OARC 37
Zone file bug hunting, Adaptive DNSSEC, failure behaviour in the DNS, and more from DNS-OARC 37.
Tag: DNS
Resurrection of injection attacks
Guest Post: DNS transparency is a gaping hole in Internet security.
Journeying into XDP: Fully-fledged DNS service augmentation
Guest Post: Fully-fledged DNS service augmentation is possible at the XDP layer and TC layer.
Opinion: DNS4EU
Opinion: What role does the public sector have in maintaining the DNS?
Stopping DNS-based DDoS attacks in their tracks
Guest Post: Researchers propose a mechanism for DNS servers to independently determine a client’s preferred protocol.
Measuring DNS-over-HTTPS performance around the world
Guest Post: How does DoH compare to the default DNS-over-UDP using port 53 (Do53) around the world?
DNS vulnerability, configuration errors can cause DDoS
Guest Post: An overlooked DNS vulnerability that, when combined with a configuration error, is leading to massive DNS traffic surges.
Notes from ICANN’s DNS Resolver Symposium
Resolver evolution, what users want, DNS tunnelling, and more from the recent Resolver Operator Forum.
How widely adopted is anycast in the DNS?
Guest Post: A handful of large operators have been behind a significant increase in the adoption of anycast in top-level and second-level domains since 2017.
Toward managing network traffic by domain name
Guest Post: A framework for monitoring traffic by domain name in the data plane by extracting the client IP, server IP, and domain name from DNS response messages and associating the domain name with data traffic.