The #OARC40 Workshop Report has been published. Come read about some of the highlights from OARC 40 and get information on upcoming events.
https://dnsoarc.medium.com/oarc-40-workshop-report-9cc2e10e777e

#LoveDNS ^RP

The Internet Last Week

* Microsoft patch Tuesday
https://msrc.microsoft.com/update-guide/releaseNote/2023-Feb
https://www.akamai.com/blog/security-research/akamai-perspective-patch-tuesday-february-2023
* US T-Mobile outage
https://www.reuters.com/business/media-telecom/t-mobile-down-thousands-users-us-downdetector-2023-02-14/
https://puck.nether.net/pipermail/outages/2023-February/014641.html
* NANOG 87 / OARC 40
https://www.nanog.org/events/nanog-87/
https://indico.dns-oarc.net/event/46/
* Superbowl traffic trends
https://blog.cloudflare.com/super-bowl-lvii/
#Microsoft #TMobile #NANOG87 #OARC40 #Superbowl

I know I had a few drinks at the social last night, but did this really happen?? #OARCKaraoke https://drive.google.com/file/d/1dvRbDlR-iUtpoTwNR9e3Tr0bsCi5pA0b/view?usp=sharing #OARC40 #LoveDNS

I know I had a few drinks at the social last night, but did this really happen?? #OARCKaraoke #https://drive.google.com/file/d/1dvRbDlR-iUtpoTwNR9e3Tr0bsCi5pA0b/view?usp=sharing #OARC40 #LoveDNS

Congratulations to our raffle winner @tale from Salesforce. Thank you for participating in our Portal Crash Course #OARC40 #LoveDNS

The Program Committee and a few OARC Staff members at dinner at Holeman and Finch on Thursday evening, following the social event #OARC40 #LoveDNS (rp)

Enjoying Day 2 Session 3 #OARC40 #LoveDNS

"Realtime DNS Exfiltration Detection in Recursive Resolvers" by David Rodriguez

There are many free software to create a #DNS tunnel (for instance iodine). (Nice Perl code to illustrate.)

#OARC40 #LoveDNS

It created a huge discussion, both on Zoom and on Mattermost. People love RFC and care about them, so it is always passionate. There are even people who criticize the fact that some people comment on RFC.

#LoveDNS #OARC40

"Measuring TTL Violation of DNS Resolvers at scale" by Tijay Chung

Measuring is not obvious (there is more than one resolver between the Web browser and the authoritative server.)

Almost 10 % of the resolvers increase the very short TTLs (one minute).

#OARC40 #LoveDNS

The main use of #DNSSEC: creating topics for OARC meetings.

#troll #OARC40 #LoveDNS

"Guaranteeing the integrity of DNS records using PKIX Certificates" by Hyeonmin Lee

Still less than 1 % SLD signed.

Solution : use PKIK certificates because everyone has one.

#OARC40 #LoveDNS

Soon, we resume #OARC40 https://indico.dns-oarc.net/event/46/

#LoveDNS #DNS #DNSSEC

Preparing to speak remotely at #OARC40.
On Ubuntu, screen sharing in Zoom does not work with the default Wayland, but works with Xorg. But it is the opposite for virtual background :-)

My coworker today was very quiet, but most attentive. #oarc40 #LoveDNS

End of the day for #OARC40. See you tomorrow!

#LoveDNS

Very funny domain: jiangxi.gov.cn Its nameserver replies over IPv6 but not over IPv4.

#DNS #OARC40

"DareShark: Detecting and Measuring Security Risks of Hosting-Based Dangling Domains" by Xiang Li, at #OARC40.

It's about domain name hijacking (I like his "use-after-free", it's basically the "subdomain attack").

#LoveDNS

The #OARC40 mascot.

"DNSCrypt Protocol: Current State and Planned Extensions" by Brian Somers at #OARC40

#dnscrypt is not dead yet?