Blogs

  • TechWoman in Marrakesh-an October ’11 update

    As I wrote in June (link to my last techwomen blog), I’ve been deeply honored this year to participate in the inaugural round of the TechWomen initiative, a program of the US State Department, as a technical mentor. This program brings technical women from the Middle East and North Africa to Silicon Valley for technical mentorships and also has brought

    Read more
    0
    0
  • Other Uses for Secure DNS

    Reprinted from ;login: The USENIX Magazine, vol. 36, no. 5 (Berkeley, CA: USENIX Associa- tion, 2011), pp. 13–16. Since the mid-1990s I’ve been a member of a distributed multi-generational team working to secure the Domain Name System. Many ideas and people have come and gone in the decade and a half since this work began, and the current work in

    Read more
    0
    0
  • Protecting Intellectual Property is Good; Mandatory DNS Filtering is Bad

    It has been about six months since I got together with four of my friends from the DNS world and we co-authored a white paper which explains the technical problems with mandated DNS filtering. The legislation we were responding to was S. 968, also called the PROTECT-IP act, which was introduced this year in the U. S. Senate. By all

    Read more
    0
    0
  • Origin ASN for Anycasted Services

    There is a new draft from the IETF GROW working group that attempts to standardize how Anycasted services manage their routing announcements.  The draft can be found at: ftp://ftp.rfc-editor.org/in-notes/internet-drafts/draft-ietf-grow-unique-origin-as-01.txt Before commenting directly on the draft a review of how ISC operates the F-Root Anycast network is in order. ISC maintains ASN 3557 which is used to originate the F-Root prefixes

    Read more
    0
    0
  • ISC BIND 9.9.0a1 — feature preview

    Yesterday afternoon, ISC published the first alpha release of BIND 9.9.0. This is an early technology preview, showing off some of the work we’ve been doing in BIND 9. There will be more new features added in later alpha releases, but here’s what’s ready to debut now… New Features The big new item in 9.9.0a1 is NXDOMAIN redirection.  This enables a

    Read more
    0
    0
  • UKNOF is 20…what next ?

    The 20th meeting of the UK Network Operators’ Forum will take place on Tuesday 6th September, hosted by Hewlett Packard at HP Labs in Bristol, and also sponsored by Arbor Networks. Our talk line-up this time includes presentations by ISC on Passive DNS and our new Knowledge Base, World IPv6 Day retrospectives, the BufferBloat project, IOS-XR experiences, BT’s LTE trial,

    Read more
    0
    0
  • DS-Lite architecture: overview and automatic configuration

    Dual Stack Lite is an architecture that allows IPv4 services to be provided in an IPv6 network, despite a limited amount of available IPv4 addresses. Work on DS-Lite was conducted within the Softwires working group in the IETF, and began in late 2008. After many revisions it was recently published as RFC6333, with its companion RFC6334 dedicated to automated configuration. Both

    Read more
    0
    0
  • ISC BIND 9.8.1b3 provides startup-performance improvements

    ISC BIND 9.8.1b3 is now available. BIND 9.8.1b3 is the third beta release of BIND 9.8. This document summarizes changes from BIND 9.8.0 to BIND 9.8.1b3.  Please see the CHANGES file in the source code release for a complete list of all changes. Download The latest versions of BIND 9 software can always be found on our web site at

    Read more
    0
    0
  • A Major Improvement in BIND 9 Startup Performance

    One of the common complaints we’ve received over the years about BIND 9 is that large authoritative servers, particularly those with a very large number of small zones, are slow to launch. I’ve met some DNS operators who expressed a powerful aversion to upgrading their systems, because a shutdown and restart can literally take all day. If that describes you,

    Read more
    0
    0
  • Launching the TechWomen Initiative – Week One

    I am deeply honored to be participating as a technical mentor for the TechWomen project this summer. TechWomen is a project born out of President Obama’s 2009 Cairo speech, where he called for greater collaboration in technology between the United States and countries with majority Muslim populations. TechWomen is funded by the U.S. Department of State’s Bureau of Educational and

    Read more
    0
    0
  • BIND 10 & DHCP

    BIND 10 BIND 10 is the next generation version of BIND, ISC’s DNS server. We have a long list of ways that we wanted to improve on BIND 9, including scalability, reliability, modularity, extensibility, and usability. The project to build BIND 10 has been active for the past 2 years, and now has a usable (though not yet production ready)

    Read more
    0
    0
  • Evolution of Internet Exchanges

    Something we’re fortunate to have at ISC is the founders of some of the most influential Internet Exchanges (IXPs) amongst our senior staff. I haven’t been personally involved in the IXP business for around 7 years now, so it was a pleasure to be invited as guest speaker to the AGM of the TorIX, Canada’s biggest IXP, in Toronto. It’s

    Read more
    0
    0

Last modified: November 1, 2016 at 1:25 pm