Carl Byington on CircleID

Home

Topics

Access Providers Artificial Intelligence Blockchain Brand Protection Broadband Censorship Cloud Computing Cyberattack Cybercrime Cybersecurity Data Center DDoS Attack DNS DNS Security Domain Management Domain Names Email Enum Gaming ICANN Internet Governance Internet of Things Internet Protocol IPv4 Markets

IPTV IPv6 Transition Law Malware Mobile Internet Multilinguism Net Neutrality Networks New TLDs P2P Policy & Regulation Privacy Regional Registries Registry Services Satellite Internet Spam Telecom UDRP VoIP VPN Web White Space Whois Wireless

Display Options:

List by Popularity Chart by Popularity

No Image

Carl Byington

Joined on August 9, 2006
Total Post Views: 22,353


	About


	Send Message


	RSS

Information about this member is not available yet.

Company

Except where otherwise noted, all postings by Carl Byington on CircleID are licensed under a Creative Commons License.

Featured Blogs

DNSSEC - Failure to Launch

Related Topics: DNS Security,

DNSSEC is a mechanism where clients can verify the authenticity of the answers they receive from servers. There are two sides here. The server must supply signed answers, and the client must verify the signatures on those answers. The validation/verification side is widely implemented, but there are very few signed zones... However, if no one signs their zones, those validating resolvers don't have many signatures to check. more

By Carl Byington
Jun 23, 2015
Comments: 10
Views: 12,276

Logjam, Openssl and Email Deliverability

Related Topics: Email,

RHEL6/Centos6 (and presumably RHEL7/Centos7) machines with the latest openssl packages now refuse SSL connections with DH keys shorter than 768 bits. Consider RHEL6 sendmail operating as a client, sending mail out to a target server. If the target server advertises STARTTLS, sendmail will try to negotiate a secure connection. This negotiation uses openssl, which will now refuse to connect to mail servers that have 512 bit DH keys. The maillog will contain entries with "reject=403 4.7.0 TLS handshake failed". more

By Carl Byington
Jun 20, 2015
Comments: 1
Views: 10,077

Topic Interests

Email, DNS Security, DNS, New TLDs, Domain Names, Registry Services, Spam, ICANN, Cybersecurity, Threat Intelligence, Broadband, Telecom, Web, Law, IPv4 Markets, Censorship, Cybercrime, Access Providers, Malware, Networks, IPv6 Transition, Whois, Privacy, Internet Protocol, Internet Governance, Regional Registries, Cyberattack, DDoS Attack, Policy & Regulation, UDRP

Recent Comments

Say YES to DNSSEC

Mar 11, 2019 5:34 PM PDT

Say YES to DNSSEC

Mar 07, 2019 3:16 AM PST

Humming an Open Internet Demise in London?

Feb 28, 2018 12:18 AM PST

Have We Reached Peak Use of DNSSEC?

Feb 26, 2018 11:08 PM PST

Have We Reached Peak Use of DNSSEC?

Feb 26, 2018 7:40 PM PST

Popular Posts

DNSSEC - Failure to Launch

Jun 23, 2015
Comments: 10
Views: 12,276

Logjam, Openssl and Email Deliverability

Jun 20, 2015
Comments: 1
Views: 10,077

A World-Renowned Source for Internet Developments. Serving Since 2002.

FOLLOW

CIRCLEID: About | Contact Us
SECTIONS: Home | Topics | Featured Blogs | News Briefs | Industry Updates | Community
TERMS OF USE: Codes of Conduct | Privacy Policy | Terms of Use

Copyright © 2002-2024 CircleID. All rights reserved unless where otherwise noted.
Local Time: Thursday, November 21, 2024 02:55 AM PST – Page Load: 0.1389 Sec.