Blogs

Last modified: January 30, 2014
  • Certificate Authority Authorization Records

    Support for the CAA record was added to BIND with the 9.10.1B release, after Rick Andrews of Symantec approached us at an IETF meeting and asked why we didn’t have it already.  Rick is an expert and evangelist for the use of certificates, so we invited Rick to explain why people should use CAA records.   Certificate Authority Authorization (CAA, RFC 6844)

    Read more
    0
  • Public Source Code Repository

    We have had many requests for a public repository to enable users or OS package maintainers to back-port specific fixes, or to cherry pick fixes for a platform release.   We used to provide access to a read-only git as a benefit of BIND- and DHCP-Membership. We ended the BIND and DHCP-Members programs in mid-2013, but we have kept the read-only

    Read more
    0
  • Codenomicon Testing for BIND

    Our users value stability and security above anything else, when it comes to BIND.  Every time we have to issue a security advisory we are inconveniencing thousands of network administrators.  We also know they would rather be informed if there is some way to compromise or crash BIND.  So, when we read that Codenomicon discovered the Heartbleed bug in OpenSSL, we decided to

    Read more
    0
  • Recent ISC Network Update

    We apologize for our recent network problems. Beginning at 2 AM Pacific time yesterday, most if not all, of the links serving ISC were saturated with DDoS attack traffic targeted at one of our Hosted@ and SNS-Public Benefit customers. We’re largely back on-line, as of late last evening yesterday. We have communicated to our Hosted@ customers via the “noc-notice”, and in response

    Read more
    0
  • DNSSEC Key Security Webinar Scheduled for July 8th, 10 AM PST

    We held the webinar, and the recording is posted here. This webinar is a joint presentation with ISC and Thales e-Security, who will discuss using their nShield HSM in conjunction with BIND. Because DNS was never designed with security in mind, inherent DNS vulnerabilities pose a risk to all Internet services. To counter these risks, DNSSEC is being deployed across

    Read more
    0