Authors

Stéphane Bortzmeyer

Based in Paris (France)

14

Articles

93

Likes on articles

About the author

I work at AFNIC (the registry of .fr domain names), in the computer department, on, among other things, DNS, security, technical watch, standardization.

• On Navigating Network Measurements - A Review of Results and Services by Tobias Fiebig

The test "dig +short @v6only-resolver.measurement.network tudelt.nl", supposed to fail, actually works because the domain name is not the right one (tudelt vs. tudelft) PS : EDE would be a great addition to v6only-resolver.measurement.network

• On Zeros Are Heroes: NSEC3 Parameter Settings in the Wild by Cordian Daniluk

Here is an example on how a registry switched to RFC 9276 : https://www.afnic.fr/en/observatory-and-resources/expert-papers/rfc-9276-afnic-adopts-the-no-salt-diet/

• On Zeros Are Heroes: NSEC3 Parameter Settings in the Wild by Cordian Daniluk

One can note that both Zonemaster and DNSviz now flag domains which are not RFC9276-compliant, which probably pushed many domains to change their configuration.

• On Join the DNS Hackathon 2025 by Vesna Manojlovic

Although it is not part of the three mentioned possible themes, I'm thinking about DELEG. After the recent IETF in Dublin, DELEG seems to be advancing well and, in march, we may already have experimental implementations to play with. Would it be a good subject? (A hackathon could be a good interoperability event.) Are other people interested? (Note that the IETF hackathon will be the exact same week-end, which is unfortunate.)

• On A Dive Into TLD Performance by Arnold Dechamps

"This was a precursor to DNS." whois, a precursor of the DNS??? "IDN TLD's (Internationalised Domain Names in Unicode) were defined much later on in RFC5890 in 2010." No, seven years before (RFC 3490) "Some TLDs even need a registrar to send an email to the TLD management organisation to create register a new domain. A human then has to manually edit the zone" There is nothing wrong with that, if that suits their constituency. The whole point of decentralisation (a strong feature of the DNS) is the ability to have different policies. "the amount of servers" It is an useful information, yes, but less important than the "strength" of the servers. bortzmeyer.fr has eight name servers but cannot be compared to .de (six servers) "It [ICANN] sadly can't enforce it on the legacy ones" See my point above about the freedom brought by decentralisation.

• On IXP-from-Scratch: Network and Security Design by Thomas Liske

"the NixOS infrastructure relies heavily on GitHub" Why? NixOS needs to contact Github daily like ChromeOS needs to talk to Google? And if it is just to update packages, aren't they alternative sources?

• Reply to Leo Vegoda on Navigating the Complexities of Effective Website Search by Phillip Oldham

“These are all good points. I especially like the idea of search suggestions. Another useful refinement would be to default search results newest first and oldest last. At the moment, documents and pages are mixed together and not ordered by date. This can make searching for the one document you want a real slog.”

As an example, searching "IP address" returns the RIPE NCC Activity Plan 2012 :-)

• On Navigating the Complexities of Effective Website Search by Phillip Oldham

Many people visiting RIPE Web site have a RIPE Access account. Are there plans to use their search history to provide context, which helps a lot in Web search? (And also raises a lot of touchy privacy issues. IMHO, "anonymous" users, those not logged in RIPE Access must be excluded of this feature. But the privacy issue also holds for logged-in users.)

• On Criteria for the Accreditation of Regional Internet Registries by Athina Fragkouli

I'm not sure about the consequences. Does it mean that Afrinic could lose its accreditation?

• On The State of Reverse DNS by Arnold Dechamps

I like the IP address 2610:a1:1072::1:42 since the name is an IDN. But, alas, no DNSSEC.

Showing 60 comment(s)

Previous
1 2 3 4 5 6
Next