DNS

 Sponsored
by

DNS / Featured Blogs

The DNS Still Isn’t a Directory

Mar 03, 2015

Back in the mid 1990s, before ICANN was invented, a lot of people assumed that the way you would find stuff on the Internet would be through the Domain Name System. It wasn't a ridiculous idea at the time. The most popular way to look for stuff was through manually managed directories like Yahoo's, but they couldn't keep up with the rapidly growing World Wide Web. Search engines had been around since 1994, but they were either underpowered and missed a lot of stuff, or else produced a blizzard of marginally relevant results.

Minimum Disclosure: What Information Does a Name Server Need to Do Its Job?

Mar 03, 2015

Two principles in computer security that help bound the impact of a security compromise are the principle of least privilege and the principle of minimum disclosure or need-to-know. As described by Jerome Saltzer in a July 1974 Communications of the ACM article, Protection and the Control of Information Sharing in Multics, the principle of least privilege states, "Every program and every privileged user should operate using the least amount of privilege necessary to complete the job."

ICANN’s Auction Piggy Bank Just Got Twice As Big

Feb 15, 2015

Kieren McCarthy reports in The Register that an obscure Panamanian company paid $30 million for .BLOG in the January 21 domain auction. ICANN's web site confirms that the domain did go to the Panamanian company. It doesn't report the amount, but Kieren's sources are usually correct. If so, the auction proceeds piggy bank just doubled from $30M to $60M dollars, and ICANN still has no idea what to do with it.

Notes from NANOG 63

Feb 13, 2015

The following is a selected summary of the recent NANOG 63 meeting, held in early February, with some personal views and opinions thrown in! ...One view of the IETF's positioning is that as a technology standardisation venue, the immediate circle of engagement in IETF activities is the producers of equipment and applications, and the common objective is interoperability.

The Why and How of DNS Data Analysis

Feb 10, 2015

A network traffic analyzer can tell you what's happening in your network, while a Domain Name System (DNS) analyzer can provide context on the "why" and "how." This was the theme of the recent Verisign Labs Distinguished Speaker Series discussion led by Paul Vixie and Robert Edmonds, titled Passive DNS Collection and Analysis -- The "dnstap" Approach.

Over 75% of All Top-Level Domains (TLDs) Now Signed With DNSSEC

Jan 22, 2015

As I was entering in data for the weekly DNSSEC Deployment Maps, I was struck by the fact that we are now at the point where 617 of the 795 top-level domains (TLDs) are now signed with DNSSEC. You can see this easily at Rick Lamb's DNSSEC statistics site...Now, granted, most of that amazing growth in the chart is because all of the "new generic TLDs" (newgTLDs) are required to be signed with DNSSEC, but we are still seeing solid growth around the world.

Where Do Old Protocols Go To Die?

Jan 21, 2015

In Ripley Scott's classic 1982 science fiction film Blade Runner, replicant Roy Batty (portrayed by Rutger Hauer) delivers this soliloquy... "I've...seen things you people wouldn't believe... Attack ships on fire off the shoulder of Orion. I watched C-beams glitter in the dark near the Tannhäuser Gate. All those... moments... will be lost in time, like (cough) tears... in... rain. Time... to die."

IANA Transition Planning Proceeding in Fine Internet Style

Jan 21, 2015

Hundreds of individuals from across the Internet community have spent countless hours over the last several months crafting plans for the transition of the stewardship of the IANA functions from NTIA to the global multistakeholder community. The fruits of that labor have become highly evident within the past weeks, as two out of three components of the transition plan obtained the consensus of their communities while the third continued its intensive progress.

CircleID’s Top 10 Posts of 2014

Jan 06, 2015

Here we are with CircleID's annual roundup of top ten most popular posts featured during 2014 (based on overall readership). Congratulations to all the participants whose posts reached top readership and best wishes for 2015.

DNSSEC Adoption Part 3: A Five Day Hole in Online Security

Dec 05, 2014

Implementing security requires attention to detail. Integrating security services with applications where neither the security service nor the application consider their counterpart in their design sometimes make plain that a fundamental change in existing practices is needed. Existing "standard" registrar business practices require revision before the benefits of the secure infrastructure foundation DNSSEC offers can be realized.

Industry Updates

Unstoppable and Radix Launch “.pw” Domain Extension for Public Wallets

Four Steps to Mitigate Subdomain Hijacking

  • By CSC
  • Aug 06, 2024

Subdomain Hijacking in the News Again - What is It?

  • By CSC
  • May 20, 2024

DNS Deep Diving into Pig Butchering Scams

DNS Abuse: Finding Our Way Forward Together

  • By CSC
  • Dec 28, 2023

Behind the Genesis Market Infrastructure: An In-Depth DNS Analysis

Signs of Ongoing RedLine Stealer Operation Found Through a DNS Deep Dive

Rhysida, Not Novel but Still Dangerous: DNS Revelations

The Makings of ADHUBLLKA According to the DNS

The Hidden Secret About Your DNS Zones and Combatting Phishing Campaigns

  • By CSC
  • Oct 12, 2023

Examining WoofLocker Under the DNS Lens

Tracing Truebot’s Roots through a DNS Deep Dive

Potential Traces of Aurora Spread Via Windows Security Update Malvertisements in the DNS

Verisign Domain Name Industry Brief: 354.0 Million Domain Name Registrations in Q1 2023

Scouring the DNS for Traces of Bumblebee SEO Poisoning

View More