Archive for August, 2008
U.S. Government Mandates DNSSEC
In response to claims of “foot-dragging” with regards to DNS security, the United States government has ordered the administrators of all .gov domains to implement DNSSEC before January 2009.
DNSSEC is a somewhat controversial set of extensions to the DNS protocol designed to provide protection from forged data. Although it was first proposed in 1995, DNSSEC [...]
Posted: August 27th, 2008 under Root Servers, Security.
Comments: 2
Looking Back on Kaminsky’s DNS Bug
A lot has happened in the world of DNS since July 8th. Of course, that is when Dan Kaminsky revealed his now famous DNS bug and the patching panic began. Since that time there have been many explanations of the bug, along with much discussion about also how the bug can be exploited and why [...]
Posted: August 18th, 2008 under Articles, Security.
Comments: none
BIND Addresses Performance and Stability Issues
The initial patches provided for better port randomization in BIND caused it to experience performance issues. Today ISC has provided a second patch for each of the Unix versions of 9.3.5, 9.4.2, and 9.5.0 that addresses the problems introduced in the first patch. As stated in the release notes, this update provides:
performance improvement over the [...]
Posted: August 2nd, 2008 under BIND, Security.
Comments: none