Articles about dns

¡Dios mío! Spain blocks DNS to hush Catalonian independence vote sites

As a controversial referendum on the independence of Catalonia draws near, the Spanish government has expanded efforts to shut it down, even blocking access to some websites. After a number of .cat websites covering the referendum were aggressively shut down by the authorities, pro-independence groups set up new websites at …
Kieren McCarthy, 27 Sep 2017
Skull and Crossbones in the cloud

IBM's global load balancer and reverse DNS degraded by domain transfer mess

IBM's cloudy global load balancer and reverse DNS services have been impacted by a DNS mess inflicted on Big Blue by a domain name registrar. In an email to customers, IBM says that on September 6th “During a bulk transfer of domain names between two domain registrar services, two domains (global-datacenter.com and global- …

Sysadmins told to update their software or risk killing the internet

The world's internet providers and sysadmins need to make sure they are running up-to-date software or they risk cutting their customers off from the internet in October, DNS overseer ICANN has warned. Following a process that started back in May 2016, the cryptographic keys that secure the foundations of the domain name …
Kieren McCarthy, 22 Aug 2017

It's 2017 and someone's probably still using WINS naming. If so, stop

Sysadmins should already have purged WINS from their Microsoft Windows Server environments – but if they haven't, there's a new reason to take it for one last walk out behind the shed. Fortinet's Honggang Ren says a WINS Server remote memory corruption vulnerability in the MS-proprietary name server isn't going to get fixed, …

.Science and .study: Domains of the bookish? More like domains of the JERKS!

The .science domain has become a “hotspots” of malicious or abusive activity on the internet, according to a new study out Tuesday. DNS-based cyber threat intelligence DomainTools found that .science had the highest concentration of bad domains, followed by .study and .racing. None of the 2017's most malicious generic Top …
John Leyden, 23 May 2017
Banned

Taiwan government to block Google's public DNS in favor of HiNet's

The Taiwanese government intends to block Google's public DNS service, citing cybersecurity concerns. The question is whether those concerns are the government's or its citizens', with the government pushing its own DNS service – a setup that is typically used to spy on people's internet communications. The announcement comes …
Kieren McCarthy, 11 May 2017

Boffins supercharge the 'hosts' file to save users plagued by DNS outages

The venerable Domain Name System (DNS) is becoming known for fragility, and keeping track of your own favourite sites' IP addresses is a pain. So a group of researchers want to automate the upkeep of hosts to give users an emergency backup if their provider blacks out. The idea is that DNS records could be double-checked …
Woman says oops after data breach... or spome other mistake, possibly. Illustration by Shutterstock/sergey sobin

Ubuntu splats TITSUP bug spread in update

A simple library update turned into a white-knuckle ride for Ubuntu sysadmins, who have lit up Reddit and StackOverflow to complain that their 'net connections went TITSUP (Total Inability To Support Usual Performance). The guilty code is an upgrade to libc6 which broke the getaddrinfo() function in Ubuntu's DNS resolver code …
Snooping image via Shutterstock

DNS lookups can reveal every web page you visit, says German boffin

Domain-name lookups only reveal websites visited, not individual pages viewed, right? Wrong: the interaction between a user and the DNS is more revealing than previously believed, according to a paper from German postdoc researcher Dominik Herrmann. In work published at pre-print server Arxiv (in German – thank you, Google …

GoDaddy DNS has gone diddy

Updated An unspecified technical infrastructure issue has left GoDaddy customers with serious DNS issues this morning. Despite a status page claims that all is green and healthy at registrar and web hosting business GoDaddy, customers have been complaining on Twitter, as well as to The Register, and to GoDaddy itself, that their …

How's your online bank security looking? The Dutch studied theirs and... yeah, not great

The Dutch banking industry is doing a terrible job of online security, according to the company that runs the country's .nl internet domains. In a new report published Tuesday, the internet registry SIDN was surprised to find that just six per cent of banks using .nl internet addresses have the security protocol DNSSEC in …
Kieren McCarthy, 22 Feb 2017
Quick fix - worker running while carrying a wrench

ISC squishes BIND packet-of-death bugs

BIND administrators, get patching: there are three irritating flaws you need to splat. The denial-of-service vulnerabilities in question are CVE-2016-9131, CVE-2016-9147, and CVE-2016-9444. Common to all three is that they're exploitable denial-of-service bugs that predominantly affect BIND-based DNS servers running in …
DNS privacy slide from Dan Gillmor, ACLU

IETF plants privacy test inside DNS

The Internet Engineering Task Force's (IETF's) years-long effort to protect Internet users has taken a small step forward, with one option for better Domain Name System (DNS) privacy reaching the test stage. "Stubby", created by the getdns project team, lets users test encrypted DNS queries. The idea isn't to flick the switch …

How many Internet of S**t devices knocked out Dyn? Fewer than you may expect

With more time to analyse its logs, DNS provider Dyn reckons about 100,000 Mirai-infected home web-connected gadgets knocked it out last Friday. In its latest analysis, product executive veep Scott Hilton writes: “We are still working on analyzing the data but the estimate at the time of this report is up to 100,000 malicious …
head of 50s-style robot

Today the web was broken by countless hacked devices – your 60-second summary

Updated Today a vast army of hijacked internet-connected devices – from security cameras and video recorders to home routers – turned on their owners and broke a big chunk of the web. Compromised machines, following orders from as-yet unknown masterminds, threw massive amounts of junk traffic at servers operated by US-based Dyn, which …
Chris Williams, 21 Oct 2016

DNS devastation: Top websites whacked offline as Dyn dies again

An extraordinary, focused attack on DNS provider Dyn continues to disrupt internet services for hundreds of companies, including online giants Twitter, Amazon, AirBnB, Spotify and others. The worldwide assault started at approximately 11am UTC on Friday. It was a massive denial-of-service blast that knocked Dyn's DNS anycast …
Kieren McCarthy, 21 Oct 2016

Dyn dinged by DDoS: US DNS firm gives web a bad hair day

A denial of service attack against managed DNS provider Dyn restricted access to many US-based websites on Friday. The ongoing attack is affecting Dyn’s managed DNS customers on the US East Coast, according to the provider, which adds on its status page that its “engineers are continuing to work on mitigating this issue”. …
John Leyden, 21 Oct 2016

Nork server blunder leaks Kim Jong Un's entire DNS – all, er, 28 .kp domains

North Korea's zone file has leaked online, providing another insight into the hermit kingdom's internet. According to the TLDR (TLD Records) project, which runs automated zone requests against top-level domains in order to act as an historical archive, the Norks reconfigured one of their nameservers for the .kp space and …
Kieren McCarthy, 21 Sep 2016

Create a news alert about dns, or find more stories about dns.

Biting the hand that feeds IT © 1998–2017