Hacker News with Generative AI: DNS

Migrating billions of records: moving Cloudflare DNS database while it's in use (cloudflare.com)
According to a survey done by W3Techs, as of October 2024, Cloudflare is used as an authoritative DNS provider by 14.5% of all websites.

Cloud Computing, DNS, Database Management, Operations, Technology

5 points by programd 7 days ago | 0 comments

Another simple online DNS query tool (nstoolbox.com)
Lookup DNS records for any domain.

Tools, DNS, Networking

48 points by sckn 11 days ago | 16 comments

Upcoming changes to the DNSSEC root trust anchor (dns-oarc.net)
We are reaching out to inform you of important changes to the DNSSEC trust anchor in the root zone. If you manage a validating DNS resolver or a tool that interacts with the DNS root zone you might need to change your software to handle the changes. This letter provides a summary of the upcoming changes and gives pointers to resources that describe them in detail.

DNSSEC, Security, Internet, Root Zone, DNS

111 points by todsacerdoti 15 days ago | 23 comments

Archive of wiki.bash-hackers.org (github.com/flokoe)
The popular wiki.bash-hackers.org (original IP address: 83.243.40.67) site had its DNS expire in April 2023.

Web Development, Software, Archives, DNS

5 points by sipofwater 18 days ago | 1 comments

Pkdns: DNS server resolving via mainline DHT (github.com/pubky)
A DNS server providing self-sovereign and censorship-resistant domain names. It resolves records hosted on the Mainline DHT, the biggest DHT on the planet with ~15M nodes that services torrents since 15 years.

DNS, Decentralized Systems, P2P, Security, Censorship Resistance

52 points by janandonly 19 days ago | 10 comments

Migrating billions of records: moving our active DNS database while it's in use (cloudflare.com)
According to a survey done by W3Techs, as of October 2024, Cloudflare is used as an authoritative DNS provider by 14.5% of all websites.

DNS, Cloud Computing, Database Management, Engineering, Networking

16 points by mikece 23 days ago | 0 comments

The trailing dot in domain names matter (lacot.org)
While inspecting traffic logs for my website in redirection.io recently, I noticed several requests logged on the lacot.org. domain name. Did you see the final trailing dot in the hostname? I first thought it was a bug in the logging platform, but I was surprised to learn that it is perfectly possible to add a dot at the end of a domain name.

Domain Names, DNS, Web Development

68 points by Damin0u 23 days ago | 18 comments

Using less memory to look up IP addresses in Mess With DNS (jvns.ca)
I’ve been having problems for the last 3 years or so where Mess With DNS periodically runs out of memory and gets OOM killed.

DNS, Memory Management, Optimization

137 points by todsacerdoti 25 days ago | 41 comments

Understanding Round Robin DNS (hyperknot.com)
For OpenFreeMap, I'm using servers behind Round Robin DNS. In this article, I'm trying to understand how browsers and CDNs select which one to use.

DNS, Networking, Web Development

394 points by hyperknot 26 days ago | 123 comments

The Alarming Prevalence of Zone Transfers (reconwave.com)
We found that 8% of all nameservers still have zone transfers enabled for all authorized zones, potentially exposing sensitive information to malicious actors.

Security, DNS, Internet Security

11 points by olamoskae 31 days ago | 6 comments

Show HN: Dynamic IPv4/6 records for Cloudflare (github.com/ddries)
Update Cloudflare DNS 'A' and 'AAAA' records for your dynamic IP.

Networking, DNS, CloudFlare, Software

13 points by kurokawad 31 days ago | 9 comments

Can't trust any VPN these days (orhun.dev)
After Turkey banned Discord, I had to jump through some hoops, fix my VPN, and learn a bit about how DNS works.

Privacy, VPNs, Turkey, DNS

89 points by orhunp_ 36 days ago | 78 comments

Show HN: 4B+ DNS Records Dataset (merklemap.com)
Introducing the world's most comprehensive and extensive DNS (Domain Name System) records database with more than 4 billion records.

DNS, Data Sets, Databases, Internet, Networking

90 points by Eikon 37 days ago | 28 comments

uBlock Origin CNAME uncloaking now supports filtering by IP address (github.com/gorhill)
This commit makes the DNS resolution code better suited for both filtering on cname and ip address. The change allows early availability of ip address so that `ipaddress=` option can be matched at onBeforeRequest time.

Security, Privacy, Web Browsing, Software, DNS

292 points by gslin 45 days ago | 128 comments

Show HN: Using Cloudflare 1.1.1.1 DNS over HTTPS API to bulk search domain TLDs (supersaas.dev)
Check if a domain is available for your brand.

DNS, Cloudflare, Domain Registration, Programming, Tools

11 points by fayazara 50 days ago | 4 comments

Show HN: Privacy DNS – free, encrypted, no-logs, DoH, DoT, DoQ, DNSProxy (privacy-dns.pw)
A free, encrypted, no-logs and privacy-oriented DNS that blocks tracking, ads and phishing, with support for DoH, DoT, DoQ and DNSCrypt & Anonymized DNSCrypt proxy.

Privacy, DNS, Security, Networking

14 points by dIsK 54 days ago | 10 comments

Insecurity Through Censorship: Vulnerabilities Caused by the Great Firewall (assetnote.io)
At Assetnote, we are contstantly resolving millions of DNS as part of the operation of our Attack Surface Management platform. When performing DNS resolutions at the scale that we do across the number of diverse customer attack surfaces that we are monitoring we start to notice some really interesting behavior in the wild.

Cybersecurity, China, DNS, Censorship

8 points by breakingcups 55 days ago | 0 comments

Cloudflare Zero Trust DNS is down (cloudflarestatus.com)
We are currently investigating an issue where users on Cloudflare WARP may intermittently have issues resolving DNS addresses.

Internet, DNS, Cloudflare, Security, Networking

9 points by zhoutong 56 days ago | 0 comments

Storing RSA Private Keys in DNS TXT Records? (reconwave.com)
To our initial surprise, hundreds of people and organisations store RSA private keys in DNS TXT records.

Security, DNS, RSA, Cryptography

15 points by olamoskae 59 days ago | 10 comments

Warning: macOS Sequoia 15 may bypass DNS encryption (obdev.at)
Warning: macOS Sequoia 15 may bypass DNS encryption

Security, macOS, DNS

27 points by lapcat 65 days ago | 5 comments

Malaysia backtracks on DNS redirection decision (thesun.my)
KUALA LUMPUR: The Malaysian Communications and Multimedia Commission (MCMC) has been asked not to proceed with its directive requiring all internet service providers (ISPs) in Malaysia to implement Domain Name System (DNS) redirection.

Malaysia, Internet Regulation, DNS, Censorship

86 points by yen223 74 days ago | 44 comments

DNS Doesn't Propagate (2021) (jvns.ca)

DNS, Networking, Troubleshooting

27 points by thunderbong 75 days ago | 21 comments

Check for malicious IPs using DNS (ipshield.dev)

Security, DNS, Network Security

26 points by shivam-dev 75 days ago | 11 comments

Malaysia started mandating ISPs to redirect DNS queries to local servers (thesun.my)
**KUALA LUMPUR:** The Malaysian Communications and Multimedia Commission (MCMC) has instructed Internet Service Providers (ISPs) to redirect Domain Name Service (DNS) traffic that uses third-party DNS servers back to their own DNS servers.

Internet, Malaysia, Government Regulation, Censorship, DNS

328 points by uzyn 75 days ago | 402 comments

IANA's List of Domain Name System (DNS) Parameters (iana.org)

Internet, DNS, Networking, Standards

25 points by h4ck_th3_pl4n3t 79 days ago | 9 comments

Show HN: DNS.Surf – Querying DNS Resolution Results in Different Regions (github.com/ccbikai)

DNS, Networking, Tools, Open Source, Show HN

7 points by ccbikai 85 days ago | 6 comments

Self-Hosting DNS (ghostdev.xyz)

DNS, Self-Hosting, Networking

55 points by onlyspaceghost 91 days ago | 69 comments

Migrating Mess with DNS to Use PowerDNS (jvns.ca)