BIND 9.12 is out!
We had to hold onto this over the recent holiday period, while we were waiting for a window to publish a reported vulnerability and circulate patched versions. Finally, now we are able to post the BIND 9.12 final.
9.12 has new features (NSEC Aggressive use, Serve Stale, Response Policy Service Interface), updates to cryptography and improved performance (dramatic improvement for glue-heavy scenarios). We refactored several of the more complex, error-prone functions and removed obsolete features. Before upgrading a production system, please read the release notes, as we have also changed some default settings.
What's New from ISC
Two years ago, interest in DNS Encryption was lukewarm… In May of 2018, ISC did a survey asking our users about their interest in deploying various DNS privacy measures, including both QNAME minimization and encryption (DNS over HTTP or DoH and DNS over TLS or DoT).
Read post
DNS over HTTPS (DoH) and DNS over TLS (DoT) are hot topics in the DNS world today, as developers and end-users become more and more focused on data privacy.
Read post