Tag: DNSSEC

Blog home

---

Notes from DNS-OARC 40

By Geoff Huston on 23 Feb 2023

Mitigating cache poisoning, post-quantum crypto, defining IPv6-ready DNS, and more from OARC 40.

Opinion: To DNSSEC or not?

By Geoff Huston on 20 Feb 2023

Is DNSSEC worth it? The case for and against.

Subdomain enumeration with DNSSEC

By Bastian Kanbach on 17 Jan 2023

Guest Post: How to enumerate subdomains in a DNSSEC-enabled zone.

IP fragmentation and the DNS — mitigation

By Carsten Strotmann on 13 Dec 2022

Guest post: How to lower the risk of fragmentation-based DNS attacks.

Improving SSH’s security with SSHFP DNS records

By Sebastian Neef on 2 Dec 2022

Guest Post: Measuring the prevalence of SSHFP records among DNS domain names.

Event Wrap: mnNOG 4

By Indya Bolton on 25 Nov 2022

APNIC presented on IPv6 and conducted training at mnNOG 4, held from 23 to 27 October 2022 in Ulaanbaatar, Mongolia.

Notes from DNS-OARC 39

By Geoff Huston on 26 Oct 2022

KINDNS, DNSSEC deployment risks, fourteen years in the life of A-Root, DNS at the IETF, and more from DNS-OARC 39.

DNSSEC validation: Performance killer?

By Petr Špaček on 22 Aug 2022

Guest Post: Are computer resources handicapped by DNSSEC validation?

[Podcast] DNS spoofing is a non-issue if we all do DNSSEC

By Robbie Mitchell on 18 Aug 2022

DNS spoofing is a growing problem that can be stopped with a range of countermeasures or just DNSSEC.

Notes from IETF 114

By Geoff Huston on 5 Aug 2022

ROV measurement, DANE Portal, IPv6 extension headers, congestion control, and more topics of interest from IETF 114.

Top