DNS-over-HTTPS in Unbound
Guest Post: Newly released Unbound 1.12.0 comes with support for DNS-over-HTTPS.
Tag: DNS
DNSSEC: The long and bumpy road of algorithm deployment
Guest Post: Study finds that replacing outdated cryptographic algorithms can take more than four years.
Thoughts from IETF 109
Geoff Huston shares his thoughts from IETF 109, including on AS Prepending, Community Networks, DNS centrality, IPv6, and TCP.
How centralized is DNS traffic becoming?
Guest Post: Study shows big five content providers are at various stages of DNSSEC, IPv6 and TCP adoption.
Strict Transport Security vs. HTTPS Resource Records: the showdown
Guest Post: HTTPS RRs and STS look similar but there are subtle differences in the threat models and deployment tradeoffs of each.
How to use blocklists effectively
Guest post: Domain Name System Blocklists have their own specific advantages for inbox protection.
Improving packet capture performance: output
Guest post: The third entry in this series looks at how common packet capture tools can improve output.
Improving packet capture performance: processing
Guest post: Part two of this series on packet capture performance examines how open source tools impact packet processing and speed.
Improving packet capture performance: measuring the problem
Guest Post: Find out which techniques help filter and inspect incoming packets at the right rate.
An update on developments with DNS-over-HTTPS
Guest Post: There’s been a fair amount of progress made in the realm of DoH over the 12 months but equally more work to be done.