Petr Špaček
Petr Špaček
Please **report all issues** to https://gitlab.nic.cz/knot/knot-resolver/issues You can log-in with your existing Github account. Simply go to https://gitlab.nic.cz/users/sign_in and click to image with Github logo. This Github repo is just...
As far as I can tell current anonymization plugins do not anonymise ECS metadata in EDNS payload. This poses problem when anonymizing data from public resolvers (where ECS is more...
Modern versions of SSL libraries support TLS session key logging via environment variable `SSLKEYLOGFILE`. This opens possibility to decipher TLS traffic in dnscap and to log DNS traffic from "inside"...
Versions: - Debian 9 (Stretch) - python3 3.5.3-1 - python3-system 233-1 - systemd 232-25+deb9u ... but as far as I can tell from _reader.c it applies to master (a402d08da41413507a4ebebf18de897f7ddf1dd2) as...
Hello, it seems that lcov/geninfo uses directory specified by `--base-directory` parameter for temporary files. This breaks parallel execution of multiple lcov instances on the same base directory, or of `base-directory`...
Specification: https://tools.ietf.org/html/draft-vixie-dnsext-dns0x20-00 Expected advantage: Little bit safer DNS queries, entropy added to queries makes it harder for attackers to spoof DNS answers. Expected disadvantage: None Expected implementation complexity for software...
Specification: https://tools.ietf.org/html/rfc8020 Expected advantage: Better cache efficiency and resource consumptions for operators, better latency for end users. Better protection again some dumb types of random subdomain attacks. Expected disadvantage: See...
Specification: Weaker variant of https://tools.ietf.org/html/rfc8020. NXDOMAIN answer in unsigned zones does not allow other data at names which generated the NXDOMAIN answer. Expected advantage: Better cache efficiency and resource consumptions...
Specification: Send queries with EDNS version 255. https://tools.ietf.org/html/rfc6891#section-6.1.3 Expected advantage: Enforcing interoperability for EDNS version negotiation, thus allowing to deploy new versions of EDNS mechanism. Expected disadvantage: Additional round-trip latency,...
Specification: DNS variant of https://datatracker.ietf.org/doc/draft-ietf-tls-grease/ Expected advantage: Enforcing interoperability for not-yet-invented EDNS options. Prevents ossification of EDNS extension mechanism. Expected disadvantage: A bit surprising EDNS options in queries and packet...