dns – WindowsTechs.com

How can I validate the root DNS key-signing-key on the command line?

Posted on March 14, 2023 by merlin2011

Consider the following dig command and its truncated output:
dig . dnskey +dnssec +multi @a.root-servers.net
…
…
;; ANSWER SECTION:
. 172800 IN DNSKEY 257 3 8 (
AwEAAaz/tAm8yTn4Mfeh… Continue reading How can I validate the root DNS key-signing-key on the command line?→

What is encrypted DNS and when to use it

Posted on March 9, 2023 by VamienMcKalin@TWC

You have heard of the term, Encrypted DNS, but do you know what it’s all about, and how to use it when the time comes? Not many people think they should know about encrypted DNS, but if you browse the web often, you should have an idea. For those… Continue reading What is encrypted DNS and when to use it→

Blocking ads and making WRT3200ACM secure?

Posted on March 7, 2023 by unbutu

I’m not the most technically inclined and recently tried installing some adblockers on my android phone – to make a long story short, I downloaded a bunch of garbage and now get ads popping up every three seconds.
I have read a little abou… Continue reading Blocking ads and making WRT3200ACM secure?→

Blocking ads and making WRT3200ACM secure?

Posted on March 7, 2023 by unbutu

DNS abuse: Advice for incident responders

Posted on March 1, 2023 by Zeljka Zorz

What DNS abuse techniques are employed by cyber adversaries and which organizations can help incident responders and security teams detect, mitigate and prevent them? The DNS Abuse Techniques Matrix published by FIRST provides answers. The Domain Name … Continue reading DNS abuse: Advice for incident responders→

How does DNS prefetching endanger security/privacy?

Posted on February 28, 2023 by Liz

I would like a comprehensive explanation of the security and privacy risks that come with DNS prefetching. There are already other posts about this topic, but I want current information and feedback on my concerns. Thanks in advance.
The H… Continue reading How does DNS prefetching endanger security/privacy?→

Cloudflare not hide VPS IP (ngnix)

Posted on February 27, 2023 by MomboteQ

I have a problem with hiding the VPS IP using Cloudflare. My IP can be found on search.censys.io. I don’t have any DNS leaks. I’m using nginx to reverse proxy a node.js server. Is it possible to hide the IP somehow to protect against DDoS … Continue reading Cloudflare not hide VPS IP (ngnix)→

Is it possible for a hostname lookup to be temporarily lying (wrong ISP)?

Posted on February 26, 2023 by Cathan

In 2017, I was running a local website on my own dedicated server in a professional data center. FreeBSD. Installed by me remotely. Maintained carefully by me. No other human users than myself. I was the only one with SSH access or indeed … Continue reading Is it possible for a hostname lookup to be temporarily lying (wrong ISP)?→

What does "Non-Compliant DNS traffic" mean? [closed]

Posted on February 22, 2023 by blackfyre

Can someone please explain following message

Message: IPS Alert: Potential Corporate Privacy Violation. Signature ET DNS Non-DNS or Non-Compliant DNS traffic on DNS port Reserved Bit Set. From: 192.168.1.11:6889, to: 46.4.77.183:53, proto… Continue reading What does "Non-Compliant DNS traffic" mean? [closed]→

Best Practices for Securing an authoritative DNS [closed]

Posted on February 7, 2023 by Cell-o

I am trying to implement the best practices for securing the Linux bind DNS.
I have never gone this in-depth with securing authoritative DNS before. What do you recommend?

Continue reading Best Practices for Securing an authoritative DNS [closed]→