DNS OARC 26: When too much DNS is barely enough
DNS over TCP, cryptography, QUIC, ANAME and HyperLogLog – Geoff discusses some of the highlights of DNS OARC 26 held in Madrid.
Tag: DNS
Investigating the status of reverse DNS
RIPE NCC recently organized a two-day DNS Measurements Hackathon to take a closer look at reverse DNS delegations.
Do you have DNSSEC validation enabled?
Guest Post: Here’s how you can ready your network for the DNSSEC Root Zone KSK rollover this October.
Are homogenic nameserver names a single point of failure?
Guest Post: Spreading domains used for nameservers may be best practice for some but may increase latency at the resolver.
KSK Rollover Q&A with ISC’s Eddy Winstead
The Root Zone KSK rollover is coming. Are your systems ready?
Thoughts on IETF 98
Geoff Huston shares his impressions from IETF 98 Working Groups and sessions, including DNSOPS, Homenet, IPv6, QUIC and Multi-Path TCP.
New RIPE Atlas Root Zone DNS Measurements
Guest Post: Two new DNS measurements have been added to every RIPE Atlas probe.
The surprising connection between HyperLoglog and DNSSEC NSEC3
Guest Post: Bert Hubert shares his trick to rapidly determine the number of DNSSEC secured delegations in a zone.
The Root of the DNS
Geoff discusses how the DNS and root servers function and provides some suggestions for the infrastructure to continue to be robust, scalable and accurate..
Let’s Encrypt with DANE
Domain Name certificates used to be expensive. In this post, I’ll walk through the process of setting up good, inexpensive and accessible DNS security using several public tools.