Blogs

Last modified: January 30, 2014
  • ISC is now offering Advance Security Notification for Unbound and NSD

    ISC has signed a memo of understanding with NLnet Labs, makers of Unbound and NSD, to collaborate in providing support to users of our DNS software. NSD is a popular alternative to BIND for authoritative DNS services, and Unbound is a high-performance recursive resolver. As a first step in this collaboration, ISC is now selling advance security notification of vulnerabilities

    Read more
    0
  • ICANN 51: Accountability for F-root operations

    ISC has operated F-Root, one of the world’s thirteen root name servers, since 1994. We have this service deployed around the world in 55 locations to offer fast, reliable access even in otherwise underserved parts of the world. We have well over a thousand peers. F-Root is supported with the help of multi-year donations in kind from many service providers and other

    Read more
    0
  • ISC’s DHCP client can be used as a delivery vector for bash bug

    Despite reports to the contrary saying that a 2011 change (CVE-2011-0997) to dhclient prevents exploitation of this flaw, ISC has confirmed that the DHCP client provided as a part of ISC DHCP can be used to exploit the bash vulnerability if the operator of a rogue DHCP server passes a specially constructed value as the payload of a DHCP option field.

    Read more
    0
  • Certificate Authority Authorization Records

    Support for the CAA record was added to BIND with the 9.10.1B release, after Rick Andrews of Symantec approached us at an IETF meeting and asked why we didn’t have it already.  Rick is an expert and evangelist for the use of certificates, so we invited Rick to explain why people should use CAA records.   Certificate Authority Authorization (CAA, RFC 6844)

    Read more
    0
  • Public Source Code Repository

    We have had many requests for a public repository to enable users or OS package maintainers to back-port specific fixes, or to cherry pick fixes for a platform release.   We used to provide access to a read-only git as a benefit of BIND- and DHCP-Membership. We ended the BIND and DHCP-Members programs in mid-2013, but we have kept the read-only

    Read more
    0