Hackernews posts about DNSSEC

DNSSEC is a cryptographic protocol that authenticates and secures DNS (Domain Name System) transactions by digitally signing DNS data to prevent spoofing and tampering.

Show HN: VeraId, a decentralised, user-friendly, offline authentication protocol (veraid.net)

2 points by gnarea 23 days ago | discuss
Dudeney's Dissection Is Optimal (arxiv.org)

2 points by PaulHoule 13 days ago | discuss
Launch HN: Enhanced Radar (YC W25) – A safety net for air traffic control

166 points by kristian1109 29 days ago | 113 comments
Some Insights into SecuROM by AnonymouS (lostfilearchives.github.io)

5 points by crowfunder 9 days ago | discuss
DNSSEC KSK rollover breaks DNS resolution for .nz domains (status.internetnz.nz)

187 points by rjgray almost 2 years ago | 177 comments
Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC (www.theregister.com)

155 points by tptacek about 1 year ago | 176 comments
Calling time on DNSSEC: The costs exceed the benefits (www.mattb.nz)

115 points by JNRowe almost 2 years ago | 181 comments
Upcoming changes to the DNSSEC root trust anchor (lists.dns-oarc.net)

111 points by todsacerdoti 5 months ago | 23 comments
Review of the .nz DNSSEC Chain Validation Incident on 29-30 May 2023 [pdf] (internetnz.nz)

90 points by slyall over 1 year ago | 25 comments
Russian TLD .RU fails DNSSEC validation (dnsviz.net)

71 points by ainar-g about 1 year ago | 22 comments
DNSSEC failures are how you get people to disable DNSSEC (utcc.utoronto.ca)

56 points by zdw almost 2 years ago | 55 comments
Calling Time on DNSSEC? (www.potaroo.net)

32 points by amaccuish 10 months ago | 20 comments
For DNSSEC and Why DANE Is Needed (blog.technitium.com)

29 points by ztgasdf over 1 year ago | 4 comments
The DNSSEC Root Signing Ceremony (www.cloudflare.com)

23 points by marshblocker about 1 month ago | 2 comments
Calling Time on DNSSEC? (blog.apnic.net)

17 points by unclet 10 months ago | 1 comments
The DNSSEC Root Signing Ceremony (www.cloudflare.com)

10 points by sph over 1 year ago | 1 comments
DNSSEC support in systemd is broken for almost 5 years now (github.com)

8 points by jsiepkes over 1 year ago | 5 comments
Row breaks out over true severity of two DNSSEC flaws (www.theregister.com)

6 points by gslin about 1 year ago | discuss
Zone Dumping via DNSSEC (harrisonm.com)

5 points by thricegr8 9 months ago | 3 comments
Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC (www.theregister.com)

4 points by slow_typist about 1 year ago | 1 comments
For DNSSEC and Why Dane Is Needed (blog.technitium.com)

4 points by shreyasonline almost 2 years ago | discuss
Internet.nl Score of news.ycombinator.com: No IPv6, DNSSEC, TLS1.3, RPKI ROA (internet.nl)

3 points by bwblabs over 1 year ago | 3 comments
Migrating to BIND9 DNSSEC-Policy (dotat.at)

3 points by fanf2 11 months ago | 1 comments
Keytrap DNSSEC Attack (labs.ripe.net)

3 points by dsr_ about 1 year ago | 1 comments
Where did DNSSEC go wrong? (blog.apnic.net)

3 points by belter 8 months ago | discuss
Using a SmartCard HSM for DNSSEC with Bind, Knot DNS, and LDNS/NSD (jpmens.net)

3 points by fanf2 9 months ago | discuss
Putting DNSSEC signers to the test: Knot vs. Bind (blog.apnic.net)

3 points by fanf2 9 months ago | discuss
BIND9 DNSSEC-Policy (dotat.at)

3 points by nalgeon 11 months ago | discuss
Remediating new DNSSEC resource exhaustion vulnerabilities (blog.cloudflare.com)

3 points by Wasserpuncher about 1 year ago | discuss
Calling Time on DNSSEC? (blog.apnic.net)

2 points by transpute 8 months ago | 1 comments
Fundamental design flaw in DNSSEC discovered (www.athene-center.de)

2 points by 10000truths about 1 year ago | 1 comments
Calling time on DNSSEC: The costs exceed the benefits (www.mattb.nz)

2 points by dantiberian almost 2 years ago | 1 comments
DNSSEC and Why It Matters for Email Security (dmarcchecker.app)

2 points by awulf about 2 months ago | discuss
DNSSEC Adoption Falls in 2024 (indieweb.social)

2 points by 8organicbits 8 months ago | discuss