Hackernews posts about DNSSEC

DNSSEC is a cryptographic protocol that authenticates and secures DNS (Domain Name System) transactions by digitally signing DNS data to prevent spoofing and tampering.

  1. If I could dissect a sauropod (svpow.com)
    138 points by surprisetalk 7 days ago | 18 comments
  2. Dissecting the gzip format (2011) (www.infinitepartitions.com)
    112 points by solannou 4 days ago | 53 comments
  3. Dissecting a Hybrid Search Query in SQL with CrateDB + Common Table Expressions (cratedb.com)
    2 points by geragray 8 days ago | 1 comments
  4. Dissecting a Hybrid Search Query in SQL (cratedb.com)
    1 points by unripe_syntax 20 days ago | discuss
  5. Univ. of North Texas' body parts business: Cutting up and leasing out the poor (www.nbcnews.com)
    2 points by Geekette 1 day ago | discuss
  6. DNSSEC KSK rollover breaks DNS resolution for .nz domains (status.internetnz.nz)
    187 points by rjgray over 1 year ago | 177 comments
  7. Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC (www.theregister.com)
    155 points by tptacek 7 months ago | 176 comments
  8. Calling time on DNSSEC: The costs exceed the benefits (www.mattb.nz)
    115 points by JNRowe over 1 year ago | 181 comments
  9. Review of the .nz DNSSEC Chain Validation Incident on 29-30 May 2023 [pdf] (internetnz.nz)
    90 points by slyall 12 months ago | 25 comments
  10. Russian TLD .RU fails DNSSEC validation (dnsviz.net)
    71 points by ainar-g 8 months ago | 22 comments
  11. Against DNSSEC (2015) (sockpuppet.org)
    56 points by tosh almost 2 years ago | 102 comments
  12. DNSSEC failures are how you get people to disable DNSSEC (utcc.utoronto.ca)
    56 points by zdw over 1 year ago | 55 comments
  13. Calling Time on DNSSEC? (www.potaroo.net)
    32 points by amaccuish 4 months ago | 20 comments
  14. For DNSSEC and Why DANE Is Needed (blog.technitium.com)
    29 points by ztgasdf about 1 year ago | 4 comments
  15. Cloudflare cheats at DNSSEC validation even for their unfiltered DNS service (catcatnya.com)
    25 points by davidgerard almost 2 years ago | 2 comments
  16. Calling Time on DNSSEC? (blog.apnic.net)
    17 points by unclet 4 months ago | 1 comments
  17. The DNSSEC Root Signing Ceremony (www.cloudflare.com)
    10 points by sph about 1 year ago | 1 comments
  18. DNSSEC support in systemd is broken for almost 5 years now (github.com)
    8 points by jsiepkes about 1 year ago | 5 comments
  19. The DNSSEC Root Signing Ceremony (www.cloudflare.com)
    8 points by StevenWaterman almost 2 years ago | discuss
  20. Row breaks out over true severity of two DNSSEC flaws (www.theregister.com)
    6 points by gslin 6 months ago | discuss
  21. Zone Dumping via DNSSEC (harrisonm.com)
    5 points by thricegr8 2 months ago | 3 comments
  22. Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC (www.theregister.com)
    4 points by slow_typist 7 months ago | 1 comments
  23. For DNSSEC and Why Dane Is Needed (blog.technitium.com)
    4 points by shreyasonline over 1 year ago | discuss
  24. Internet.nl Score of news.ycombinator.com: No IPv6, DNSSEC, TLS1.3, RPKI ROA (internet.nl)
    3 points by bwblabs about 1 year ago | 3 comments
  25. Migrating to BIND9 DNSSEC-Policy (dotat.at)
    3 points by fanf2 4 months ago | 1 comments
  26. Keytrap DNSSEC Attack (labs.ripe.net)
    3 points by dsr_ 7 months ago | 1 comments
  27. Where did DNSSEC go wrong? (blog.apnic.net)
    3 points by belter about 2 months ago | discuss
  28. Using a SmartCard HSM for DNSSEC with Bind, Knot DNS, and LDNS/NSD (jpmens.net)
    3 points by fanf2 2 months ago | discuss
  29. Putting DNSSEC signers to the test: Knot vs. Bind (blog.apnic.net)
    3 points by fanf2 3 months ago | discuss
  30. BIND9 DNSSEC-Policy (dotat.at)
    3 points by nalgeon 4 months ago | discuss
  31. Remediating new DNSSEC resource exhaustion vulnerabilities (blog.cloudflare.com)
    3 points by Wasserpuncher 7 months ago | discuss
  32. Is DNSSEC Worth It? (blog.apnic.net)
    3 points by AndyMcConachie over 1 year ago | discuss
  33. OpenBSD: Manage DNS, DNSSEC (to automate TLSA records) (doc.huc.fr.eu.org)
    2 points by hucste almost 2 years ago | 2 comments
  34. Calling Time on DNSSEC? (blog.apnic.net)
    2 points by transpute about 2 months ago | 1 comments
  35. Fundamental design flaw in DNSSEC discovered (www.athene-center.de)
    2 points by 10000truths 7 months ago | 1 comments