Hi,
I've got a bunch of DNSSEC questions.
Any advice would be appreciated.
The context is a little VM with six little zones,
soon to be upgraded to debian-11 and bind-9.16.15.
I haven't signed my zones before but now is the time.
I'm going to rotate KSKs annually because it's
finally so easy to
Hi raf,
On 09-08-2021 10:08, raf via bind-users wrote:
Hi,
I've got a bunch of DNSSEC questions.
Any advice would be appreciated.
The context is a little VM with six little zones,
soon to be upgraded to debian-11 and bind-9.16.15.
I haven't signed my zones before but now is the time.
I'm
Every resolver on the planet already supports HTTPS and SVCB. Every
authoritative server on the planet already supports HTTPS and SVCB via unknown
record format. iOS is already making HTTPS queries for every webpage. I believe
other browsers also make HTTPS queries today. Go look at your DNS
Thanks to all of you, is it possible to use nslookup in order to
update DNS records from Linux hosts to a Windows DNS server (not BIND)
?
Thanks a lot again!
El jue, 5 ago 2021 a las 14:14, Cuttler, Brian R (HEALTH)
() escribió:
>
> Roberto,
>
> I've been using nsupdate for that.
>
> I
Hi Matthijs,
On Mon, Aug 09, 2021 at 11:11:48AM +0200, Matthijs Mekking
wrote:
> Hi raf,
>
> On 09-08-2021 10:08, raf via bind-users wrote:
> > Hi,
> >
> > I've got a bunch of DNSSEC questions.
> > Any advice would be appreciated.
> >
> > The context is a little VM with six little zones,
>
> -Ursprüngliche Nachricht-
> Von: bind-users Im Auftrag von Evan
> Hunt
> Gesendet: Samstag, 7. August 2021 20:21
> An: Gaurav Kansal
> Cc: bind-users@lists.isc.org
> Betreff: Re: Does BIND supports ANAME RR
>
> On Sat, Aug 07, 2021 at 11:05:51PM +0530, Gaurav Kansal wrote:
> > I need
On Sat, Aug 07, 2021 at 11:05:51PM +0530, Gaurav Kansal wrote:
> I need the help in figuring out whether BIND supports ANAME ? If yes,
> then from which version on wards ?
No, it doesn't. The effort to standardize ANAME stalled, and I doubt
it'll be coming back.
The new HTTPS and SVCB records
> On 09.08.21 13:55, Klaus Darilion via bind-users wrote:
> >But honestly SVCB will not solve the ANAME problem. I will take years
> > until all resolvers/client would support SVCB whereas ANAME would be
> > implemented in the authoritative name server
>
> resolving on authoritative server could
On 09.08.21 13:55, Klaus Darilion via bind-users wrote:
>But honestly SVCB will not solve the ANAME problem. I will take years
> until all resolvers/client would support SVCB whereas ANAME would be
> implemented in the authoritative name server
resolving on authoritative server could in fact
No, and there’s no strong usercase for that. The ANAME was wrong on every level
from the protocol perspective and I am glad it is gone.
Ondřej
--
Ondřej Surý — ISC (He/Him)
My working hours and your working hours may be different. Please do not feel
obligated to reply outside your normal
On Mon, Aug 09, 2021 at 01:55:50PM +0200, Klaus Darilion wrote:
> But honestly SVCB will not solve the ANAME problem. I will take years
> until all resolvers/client would support SVCB whereas ANAME would be
> implemented in the authoritative name server and hence would work for
> every
Does every application that uses gethostbyname have a benefit of HTTPS/SVCB?
That is what I meant.
regards
Klaus
> -Ursprüngliche Nachricht-
> Von: Mark Andrews
> Gesendet: Montag, 9. August 2021 15:55
> An: Klaus Darilion
> Cc: Evan Hunt ; Gaurav Kansal ; bind-
> us...@lists.isc.org
>
On Mon, Aug 9, 2021 at 8:46 AM Roberto Carna wrote:
> Thanks to all of you, is it possible to use nslookup in order to
> update DNS records from Linux hosts to a Windows DNS server (not BIND)
Not nslookup, but nsupdate as Brian Cuttler said. nslookup is purely
a query tool;
nsupdate implements
Do you think that we can get rid of CNAME too?
regards
Klaus
> -Ursprüngliche Nachricht-
> Von: Ondřej Surý
> Gesendet: Montag, 9. August 2021 19:19
> An: Klaus Darilion
> Cc: Mark Andrews ; bind-users@lists.isc.org
> Betreff: Re: Does BIND supports ANAME RR
>
> No, and there’s no
If you mean stop publishing CNAME as meaning “the server for this service is …”
then yes. HTTPS can be published along side MX, A, and . Just start doing
it.
Mark
--
Mark Andrews
> On 10 Aug 2021, at 07:13, Klaus Darilion wrote:
>
> Do you think that we can get rid of CNAME too?
>
Dear Admin,
Has anybody used advance features of bind DoT and DoH, Kindly help me to
configure DoT and DoH in DNS with bind BIND 9.17.16+CentOS 7.9.
With Regards
Divya
- Original Message -
From: "Ondřej Surý"
To: "klaus darilion"
Cc: bind-users@lists.isc.org
Sent: Monday, August
Please, don’t reply to threads with unrelated subject matter. This is
just good mailing list etiquette.
Please create a new message, not a reply, and ask the question again.
Mark
> On 10 Aug 2021, at 13:48, Divya wrote:
>
> Dear Admin,
>
> Has anybody used advance features of bind DoT and
17 matches
Mail list logo
