Hi,
just guessing maybe its related to
https://developers.google.com/speed/public-dns/docs/security?hl=en#nonce_prefixes
cheers,
-arsen
* Moritz Müller [2021-10-07 13:50 (+0200)]:
Hi,
For the second time in a few weeks we noticed a significant increase in queries
for NS and TXT records
* A. Schulze [2021-05-04 23:32 (+0200)]:
Am 04.05.21 um 20:53 schrieb Phil Regnauld:
On the validation side, take a look at:
https://github.com/tobez/validns
validns seem to be unmaintained. Build fail with current openssl :/
https://github.com/DENICeG/validns
Is a fork
* Viktor Dukhovni [2021-02-09 13:19 (-0500)]:
My Perl script (below) just checks that none of the RRSIGs are expiring
too soon. If some RRset is not signed at all, that's not detected
presently, but should be easy to add.
named-compilezone -i local -jD -f raw -o - $zone $db 2>/dev/null |
Hi Frank,
you could use dig!
If you ask dnsmasq for the version string:
dig @ip-of-your-network version.bind ch txt +short
cheers
-arsen
* Frank Bulk [2021-02-01 10:29 (-0600)]:
Is there a tool that would allow me to identify all the DNS servers on our
networks that are using dnsmasq?
Hi Matt,
* Matthew Pounsett [2021-01-19 14:59 (-0500)]:
On Dec 30, 2020, at 06:42, Arsen STASIC wrote:
Dear DNS-OARC,
Could you please support DNSSEC algorithm Ed25519 (15)?
I think Casey Deccio has already added support for Ed25519. [0]
Hi Arsen.
First, it’s generally better to address
Hi Jerry,
* Jerry Lundström [2021-01-04 09:19 (+0100)]:
On 2020-12-30 12:42, Arsen STASIC wrote:
Could you please support DNSSEC algorithm Ed25519 (15)?
I think Casey Deccio has already added support for Ed25519. [0]
^
[0]
https://github.com
Dear DNS-OARC,
Could you please support DNSSEC algorithm Ed25519 (15)?
I think Casey Deccio has already added support for Ed25519. [0]
RFC 8624 lists Ed25519 as RECOMMENDED [1].
Verisign's dnssec-analyzer already supports DNSSEC algorithm Ed25519 (15) [2].
It would be really handy to have a
* John Levine [2020-09-11 14:29 (-0400)]:
Are there any published numbers estimating how well the various DNSSEC
algorithms are supported in DNS caches and client software?
Or to put it another way, were I to switch from signing with
algorithm 8 to 13, how much would I regret it?
Geoff
Hi Casey,
* Casey Deccio [2020-02-18 15:54 (-0700)]:
On Feb 17, 2020, at 1:37 AM, Marco Davids (Private) via dns-operations
wrote:
Op 14-02-2020 om 16:09 schreef Vladimír Čunát:
For me personally, the old historical data isn't much interesting. What
I'm missing most is the feature of
Dear DNS-OARC,
What is the status of DNSViz's historical data import job?
cheers
arsen
___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
* Vicky Shrestha [2020-02-04 12:57 (-0800)]:
Hi,
We have identified the bug in a new version that was released to a subset
of colos. We have rolled out a fix.
how does it look now from your vantage point?
It seems to be fixed from my vantage point.
-arsen
* Mark Andrews [2020-01-25 08:56 (+1100)]:
On 24 Jan 2020, at 21:36, Arsen STASIC wrote:
This software might be of interest for DNS anycast providers (or customers)
which are running BIND.
With BIND 9.11 and newer DNS Cookies are enabled **automatically**.
You seem surprised? DNS COOKIE
Just a short follow up on this.
Out of 4134 unique NS entries in the Root-Zone 1103 NS have DNS Cookies enabled
(~26%). (I don't know how many among them are anycasted or load-balanced.)
Among these NS with DNS Cookies enabled are big TLDs like: uk, de, fr, br, pl,
nl, it
Find below the
Hi,
This software might be of interest for DNS anycast providers (or customers)
which are running BIND.
With BIND 9.11 and newer DNS Cookies are enabled **automatically**.
While I was searching for software to check DNS Cookies and I didn't find
anything.
Therefore I wrote this small Perl
* Viktor Dukhovni [2019-10-10 20:51 (-0400)]:
On Thu, Oct 10, 2019 at 06:25:41PM -0400, Matthew Pounsett wrote:
The speculation I've seen is that Cogent refuses to treat HE as a Tier1
network in v6 because they don't try to also be one in v4, but that they
should because HE's v6 network is
15 matches
Mail list logo