Hackernews posts about DNSSEC

DNSSEC is a cryptographic protocol that authenticates and secures DNS (Domain Name System) transactions by digitally signing DNS data to prevent spoofing and tampering.

  1. Upcoming changes to the DNSSEC root trust anchor (lists.dns-oarc.net)
    111 points by todsacerdoti 15 days ago | 23 comments
  2. Technical Writeup of ESET Israel Wiper (www.emanueledelucia.net)
    1 points by speckx 29 days ago | discuss
  3. DNSSEC KSK rollover breaks DNS resolution for .nz domains (status.internetnz.nz)
    187 points by rjgray over 1 year ago | 177 comments
  4. Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC (www.theregister.com)
    155 points by tptacek 9 months ago | 176 comments
  5. Calling time on DNSSEC: The costs exceed the benefits (www.mattb.nz)
    115 points by JNRowe over 1 year ago | 181 comments
  6. Review of the .nz DNSSEC Chain Validation Incident on 29-30 May 2023 [pdf] (internetnz.nz)
    90 points by slyall about 1 year ago | 25 comments
  7. Russian TLD .RU fails DNSSEC validation (dnsviz.net)
    71 points by ainar-g 10 months ago | 22 comments
  8. DNSSEC failures are how you get people to disable DNSSEC (utcc.utoronto.ca)
    56 points by zdw over 1 year ago | 55 comments
  9. Calling Time on DNSSEC? (www.potaroo.net)
    32 points by amaccuish 6 months ago | 20 comments
  10. For DNSSEC and Why DANE Is Needed (blog.technitium.com)
    29 points by ztgasdf about 1 year ago | 4 comments
  11. Calling Time on DNSSEC? (blog.apnic.net)
    17 points by unclet 6 months ago | 1 comments
  12. The DNSSEC Root Signing Ceremony (www.cloudflare.com)
    10 points by sph about 1 year ago | 1 comments
  13. DNSSEC support in systemd is broken for almost 5 years now (github.com)
    8 points by jsiepkes over 1 year ago | 5 comments
  14. The DNSSEC Root Signing Ceremony (www.cloudflare.com)
    8 points by StevenWaterman almost 2 years ago | discuss
  15. Row breaks out over true severity of two DNSSEC flaws (www.theregister.com)
    6 points by gslin 8 months ago | discuss
  16. Zone Dumping via DNSSEC (harrisonm.com)
    5 points by thricegr8 5 months ago | 3 comments
  17. Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC (www.theregister.com)
    4 points by slow_typist 9 months ago | 1 comments
  18. For DNSSEC and Why Dane Is Needed (blog.technitium.com)
    4 points by shreyasonline over 1 year ago | discuss
  19. Internet.nl Score of news.ycombinator.com: No IPv6, DNSSEC, TLS1.3, RPKI ROA (internet.nl)
    3 points by bwblabs over 1 year ago | 3 comments
  20. Migrating to BIND9 DNSSEC-Policy (dotat.at)
    3 points by fanf2 6 months ago | 1 comments
  21. Keytrap DNSSEC Attack (labs.ripe.net)
    3 points by dsr_ 9 months ago | 1 comments
  22. Where did DNSSEC go wrong? (blog.apnic.net)
    3 points by belter 4 months ago | discuss
  23. Using a SmartCard HSM for DNSSEC with Bind, Knot DNS, and LDNS/NSD (jpmens.net)
    3 points by fanf2 5 months ago | discuss
  24. Putting DNSSEC signers to the test: Knot vs. Bind (blog.apnic.net)
    3 points by fanf2 5 months ago | discuss
  25. BIND9 DNSSEC-Policy (dotat.at)
    3 points by nalgeon 7 months ago | discuss
  26. Remediating new DNSSEC resource exhaustion vulnerabilities (blog.cloudflare.com)
    3 points by Wasserpuncher 9 months ago | discuss
  27. Is DNSSEC Worth It? (blog.apnic.net)
    3 points by AndyMcConachie over 1 year ago | discuss
  28. Calling Time on DNSSEC? (blog.apnic.net)
    2 points by transpute 4 months ago | 1 comments
  29. Fundamental design flaw in DNSSEC discovered (www.athene-center.de)
    2 points by 10000truths 9 months ago | 1 comments
  30. Calling time on DNSSEC: The costs exceed the benefits (www.mattb.nz)
    2 points by dantiberian over 1 year ago | 1 comments
  31. DNSSEC Adoption Falls in 2024 (indieweb.social)
    2 points by 8organicbits 4 months ago | discuss
  32. How DNSSEC Works (howdnssec.works)
    2 points by mooreds 4 months ago | discuss