Blogs

  • A Major Improvement in BIND 9 Startup Performance

    One of the common complaints we’ve received over the years about BIND 9 is that large authoritative servers, particularly those with a very large number of small zones, are slow to launch. I’ve met some DNS operators who expressed a powerful aversion to upgrading their systems, because a shutdown and restart can literally take all day. If that describes you,

    Read more
    0
    0
  • Launching the TechWomen Initiative – Week One

    I am deeply honored to be participating as a technical mentor for the TechWomen project this summer. TechWomen is a project born out of President Obama’s 2009 Cairo speech, where he called for greater collaboration in technology between the United States and countries with majority Muslim populations. TechWomen is funded by the U.S. Department of State’s Bureau of Educational and

    Read more
    0
    0
  • BIND 10 & DHCP

    BIND 10 BIND 10 is the next generation version of BIND, ISC’s DNS server. We have a long list of ways that we wanted to improve on BIND 9, including scalability, reliability, modularity, extensibility, and usability. The project to build BIND 10 has been active for the past 2 years, and now has a usable (though not yet production ready)

    Read more
    0
    0
  • Evolution of Internet Exchanges

    Something we’re fortunate to have at ISC is the founders of some of the most influential Internet Exchanges (IXPs) amongst our senior staff. I haven’t been personally involved in the IXP business for around 7 years now, so it was a pleasure to be invited as guest speaker to the AGM of the TorIX, Canada’s biggest IXP, in Toronto. It’s

    Read more
    0
    0
  • DNS Forwarders

    Recently, at a BIND 10 Face to face meeting, we scheduled a short slot of time to discuss the features of a DNS forwarder. As part of the development process of the BIND 10 recursive resolver, we initially implemented a basic forwarder. As we added actual recursive resolver features, the original ‘forwarding’ mode was left in, and got some of

    Read more
    0
    0
  • New Opportunities for Criminal Growth – Forecasting Cyber-Crime during the IPv6 Transition

     I had the fortunate opportunity to present the Wednesday Keynote at the Rocky Mountain 2011 IPv6 Summit.  The session was a slightly different angle to the normal “IPv6” presentations. We worked through how the cyber-criminal dynamics impact IPv4 networks, the cyber-criminal “arms race” is pushing IPv6 in the criminal market place, and how these factors must be considered in IPv6

    Read more
    0
    0
  • ISC DHCP and IPv6 – the DHCPv6 story

    Numbering Computers in IPv6 Computers and other IPv6-enabled devices need a way to select which IP address they are using, just like in IPv4. IPv6 provides several ways to do this: Manual configuration Autoconfiguration (Stateless Address Autoconfiguration, or SLAAC) Cryptographically Generated Addresses (CGA) DHCPv6 (sometimes called stateful autoconfiguration) Manual configuration works the same in IPv6 as in IPv4 – the

    Read more
    0
    0
  • Sign up now to learn how Security Information Exchange (SIE) & Passive DNS are changing the way investigators are effectively collaborating.

    Robert Edmonds, Eric Ziegast, Barry Greene The Security Information Exchange (SIE) and ISC’s Passive DNS System (DNSDB) are public benefit projects that are contributing to a shift in the way security companies work with each other. Please sign up now for one of two webinars on March 29th, 2011 (click here). In this webinar, we will: Provide an Overview of

    Read more
    0
    0
  • Blocking DNS

    COICA and Secure DNS Update: This article from March 2011 was superceded in some details by a article published in August 2011. If you reached this blog entry as a result of the SOPA markup meeting December 15 2011, you should read both articles. As a strong proponent of the private right of action for all Internet endpoints and users, I’ve long

    Read more
    0
    0
  • RTT Banding Removal From BIND 9

    In response to our customers and colleagues, ISC has chosen to remove the RTT Banding feature from BIND 9, starting with BIND 9.8.0. Other supported versions will have RTT Banding removed in their next releases. BIND 9.8.0 is scheduled to go out on March 1st, 2011. 9.8.1 will follow around a month later. Before Banding Prior to implementing RTT Banding,

    Read more
    0
    0
  • But Open Source Software is unsupported. Isn’t it?

    Open Source is not unsupported It’s a common misconception that open source software means it’s unsupported, that if you want to have 7×24 support you have to buy commercial software. Nothing could be further from the truth. The reality is that open source software is written by professional coders, is fully production quality and support is available. The major difference between

    Read more
    0
    0
  • An Ending and An Opportunity

    A new milestone in the history and evolution of the Internet has passed: On Thursday, February 3, 2011, it was announced that the Internet Assigned Numbers Authority (IANA), steward of the Internet’s reserves of unassigned IP addresses, has distributed the final blocks of IPv4 addresses to the Regional Internet Registries (RIRs). The RIRs, based in North America, Europe, Asia, South

    Read more
    0
    0

Last modified: September 26, 2016 at 6:34 pm