Recent searches

No recent searches

Search options

Only available when logged in.
101010.pl is one of the many independent Mastodon servers you can use to participate in the fediverse.
101010.pl czyli najstarszy polski serwer Mastodon. Posiadamy wpisy do 2048 znaków.

Administered by:

Server stats:

485
active users

101010.pl: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.5.0-alpha.1

#dns

31 posts28 participants5 posts today
*
CryptGoat

"Die CUII gibt auf." Huh. Krass! Da sieht man mal, wie sehr sich etwas Mut und Courage lohnen können - und auch dass Einzelne etwas bewirken können! ✊

Kontext: 2024 veröffentlichte eine damals 17–Jährige die eigentlich "geheimen" Sperrentscheide von Websites der privat organisierten und nicht demokratisch legitimierten "Clearingstelle Urheberrecht" (CUII),
ein Zusammenschluss von Urheber.innen und Providern. Nun soll es wieder Gerichtsentscheide für Sperren brauchen.
netzpolitik.org/2025/die-cuii-

netzpolitik.org · Die CUII gibt auf: Für Netzsperren braucht es jetzt einen GerichtsentscheidDie CUII, ein Zusammenschluss von Internetprovidern und Rechteinhabern, verzichtet nach einem Rüffel der Bundesnetzagentur darauf, nach eigenem Gutdünken Websites zu sperren. Das haben wir vermutlich der 18-jährigen Lina zu verdanken.
#CUII#Netzsperren#Zensursula
B'ad Samurai 🐐

Since DNS is on 🔥 today I should note if you're a Splunk shop, the DNS data model in Enterprise Security does not include the field for TXT record values, you need to add that manually.

Then you can do high-fidelity detections such as length and base64 with conversions looking for code.

#dns#splunk#blueteam
*
B'ad Samurai 🐐

DNS TXT isn't just for malware, C2s and exfil. It can be fun too!

  • ASCII art (Resolve-DnsName -Type TXT run-dns.never.watch).Strings | Sort
  • Storing encodings 🐱.never.watch
  • Mazes! (Resolve-DnsName -Type TXT maze.never.watch).Strings | Sort
  • QR codes (Resolve-DnsName -Type TXT qr.never.watch).Strings -replace '#','█' | Sort
  • Trolling/activism ··⧸··⧸.never.watch
  • Guitar tabs
  • Playlists/reading lists
  • Geocities-era guest books
#dns
Mr. Tux

Meine Datenschutz und Privatsphäre Übersicht 2025, für alle 🔐

als PDF Datei:

cryptpad.digitalcourage.de/fil

#DSGVO #TDDDG #unplugtrump
#Datenschutz #Privatsphäre #sicherheit #Verschlüsselung #Adguard
#encryption #WEtell #SoloKey #NitroKey #Email #Cybersecurity #Pixelfed #Massenűberwachung #Leta
#Google #Metadaten #WhatsApp #Threema #Cryptpad #Signal
#Hateaid #Cyberstalking #Messenger #Browser #Youtube #NewPipe #Chatkontrolle #nichtszuverbergen #ÜberwachungsKapitalismus #Microsoft #Apple #Windows10 #Linux #Matrix #Mastodon #Friendica #Fediverse #Mastodir #Loops #2FA #Ransomware #Foss #VeraCrypt #HateAid #Coreboot #Volksverpetzer #Netzpolitik #endof10 #OpenAndroidInstaller #Nobara
#Digitalisierung #FragdenStaat #Shiftphone  #OpenSource #GrapheneOS #CCC #Mail #Mullvad #PGP #GnuPG #DNS #Gaming #linuxgaming #Lutris #Protondb #eOS #Enshittification
#Bloatware #TPM #Murena  #LiberaPay #GnuTaler #Taler #PreppingforFuture
#FediLZ #BlueLZ #InstaLZ #ThreatModel
#FLOSS #UEFI #Medienkompetenz

NLnet Labs

Unbound 1.23.1 in now available. This security release fixes the Rebirthday Attack CVE-2025-5994.

The vulnerability re-opens up #DNS resolvers to a birthday paradox, for EDNS client subnet servers that respond with non-ECS answers. The #CVE is described here:
nlnetlabs.nl/downloads/unbound

We would like to thank Xiang Li (AOSP Lab, Nankai University) for discovering and responsibly disclosing the vulnerability.
github.com/NLnetLabs/unbound/r

Alexandre Dulaunoy

« Cloudflare 1.1.1.1 Incident on July 14, 2025 »

Perhaps it’s time to return to DNS’s original distributed design.

#dns #distributed #cloudflare

blog.cloudflare.com/cloudflare

The Cloudflare Blog · Cloudflare 1.1.1.1 Incident on July 14, 2025On July 14th, 2025, Cloudflare made a change to our service topologies that caused an outage for 1.1.1.1 on the edge, resulting in downtime for 62 minutes for customers using the 1.1.1.1 public DNS Resolver as well as intermittent degradation of service for Gateway DNS. We’re deeply sorry for this outage. This outage was the result of an internal configuration error and not the result of an attack or a BGP hijack. In this blog post, we’re going to talk about what the failure was, why it occurred, and what we’re doing to make sure this doesn’t happen again.
Ian Campbell

Just a quickie from one of our @DomainTools researchers today that I know @cR0w will enjoy.

Malware in DNS - specifically, malware seen being assembled from DNS TXT records.

Not a "zomg new thing!" so much as a neat example in the wild.

#infosec #cybersecurity #DNS

dti.domaintools.com/malware-in

DomainTools Investigations | DTI · Malware in DNS - DomainTools Investigations | DTIBecause it's always DNS, we wanted to share this fun finding of malware stored across DNS TXT records.
Stéphane Bortzmeyer

#BGP #routage Hier, Cloudflare a cessé d'annoncer son préfixe 1.1.1.0/24 (pour une raison inconnue). Les nombreuses annonces « pirates » de ce préfixe ont alors été davantage visibles, amenant certains, apparemment à tort, à croire qu'elles étaient la cause de la panne du résolveur #DNS 1.1.1.1.

mastodon.gougere.fr/@bgp/11485

Car, oui, il y a encore des réseaux (Tata, par exemple) qui annoncent ce préfixe, qui ne leur appartient pourtant pas.

Mastodon - Gougère NetworkBGP WhichASN (@bgp@mastodon.gougere.fr)@bortzmeyer 1.1.1.0/24 13335 Details: On prefix: https://stat.ripe.net/ui2013/1.1.1.0/24 On AS: https://stat.ripe.net/ui2013/AS13335
*
Terence Eden’s Blog

DNS Esoterica - Why you can't dig Switzerland

shkspr.mobi/blog/2022/07/dns-e

As part of my new job, I'm learning a lot more about the mysteries of the Domain Name System than any mortal should know I thought possible.

The humble unix dig command allows you to query all sort of DNS information. For example, to see name server records for the BBC website, you can run:

dig bbc.co.uk NS

Which will get you:

;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35614;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 17;; OPT PSEUDOSECTION:; EDNS: version: 0, flags:; udp: 1232; COOKIE: 097db2ee4c92b84982083ecf62b5b5f2007906e616035113 (good);; QUESTION SECTION:;bbc.co.uk.         IN  NS;; ANSWER SECTION:bbc.co.uk.      900 IN  NS  ddns1.bbc.com.bbc.co.uk.      900 IN  NS  dns0.bbc.co.uk.bbc.co.uk.      900 IN  NS  ddns1.bbc.co.uk....

And a whole lot more. But you can go further down the DNS tree. What are the nameservers for .co.uk?

dig co.uk NS

And you'll get your answer. You can go one further and see the nameservers for the Top Level Domain:

dig uk NS

Which replies with:

;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54061;; flags: qr rd ra ad; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 17;; OPT PSEUDOSECTION:; EDNS: version: 0, flags:; udp: 1232; COOKIE: 880427eda8ff71de2ab4f43862b5b65f95e317d29cc10a8e (good);; QUESTION SECTION:;uk.                IN  NS;; ANSWER SECTION:uk.         159692  IN  NS  nsc.nic.uk.uk.         159692  IN  NS  dns1.nic.uk.uk.         159692  IN  NS  nsd.nic.uk....

And that works with every TLD. Countries like de, generic names like museum, and internationalised domains like 在线. All of them work!

Except Switzerland.

Switzerland's country code is ch - after the name Confoederatio Helvetica. Let's run the dig on it: dig ch NS

;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 31910;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1;; WARNING: recursion requested but not available

We have been refused and warned. But why does this only happen with Switzerland?

The blame - as with most modern ills - lies in the mid-1970s. The Bee Gees were storming the charts with "Jive Talkin'", the Rocky Horror Picture Show was gathering a cult following, and MIT scientists were causing chaos. Literally.

Chaosnet was an early network protocol designed for local networks. It was technically very clever but, sadly, never really took off.

However, it found its way into DNS records. Let's go back to the answer to dig bbc.co.uk NS:

;; ANSWER SECTION:bbc.co.uk.      900 IN  NS  ddns1.bbc.com.

OK, the first part is the domain name. The number is the TTL. The IN is the class. The NS says this is a nameserver record. And, finally, we get the domain of the nameserver.

But, in the class, what does IN stand for?

"Internet", obviously. Wait... Isn't the DNS on the Internet? Why do we need to specify that these DNS records are for Internet?

Well, isn't it obvious? Because you might want records of a different network. Like, for example, Chaosnet.

And if Internet is abbreviated to IN, what is Chaosnet shortened to? That's right! CH.

So, dig sees you enter ch for Switzerland, but thinks you're asking about CH for Chaosnet. And so it fails.

In order to query the records for ch we need to provide an absolutely fully-qualified domain name. It's as simple as sticking a dot at the end of the domain name:

dig ch. NS

;; Got answer:;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64932;; flags: qr rd ra ad; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 11;; OPT PSEUDOSECTION:; EDNS: version: 0, flags:; udp: 1232; COOKIE: e19b9c23cdfa0f7bcf82750462b5c16b47744386c7974ffb (good);; QUESTION SECTION:;ch.                IN  NS;; ANSWER SECTION:ch.         164894  IN  NS  e.nic.ch.ch.         164894  IN  NS  a.nic.ch.ch.         164894  IN  NS  f.nic.ch.

And there we go. A failed 1970s experiment like bell-bottoms and Betamax videos - but with much longer lasting consequences.

You can see some CH records by running like:

dig ch txt @f.root-servers.net version.bind

That will get you something like:

;; ANSWER SECTION:version.bind.       86400   CH  TXT "cloudflare-f-root-20190930"

Of course, DNS doesn't only have IN and CH class records.

There's also Hesiod - HS. But you already knew that, right...?

Terence Eden’s Blog · DNS Esoterica - Why you can't dig Switzerland
More from Terence Eden
#dns#internet#trivia
TrendingLive feeds
About