DNS resolvers are constantly adding features without removing any. This trend cannot continue indefinitely because the software could eventually break under its own weight. Which features are used in practice and which can be safely removed? We present preliminary results of a survey among DNS reso…
Likes on articles
About the author
This article describes a newly discovered DNS protocol vulnerability that affects most recursive DNS resolvers. NXNSAttack allows the execution of random subdomain attacks using the DNS delegation mechanism, resulting in a big packet amplification factor.
DNS has been in use on the Internet for more than 30 years — now it is time for its worldwide maintenance that shall, for the first time in the existence of DNS, require coordinated actions from all operators of DNS servers and DNSSEC validators. What actions do you need to take to survive?
Showing 3 article(s)