urn:uuid:71de4eb8-53b2-57ee-b483-76cec6950f5b Topic: DNS – Ctrl blog Daniel Aleksandersen https://www.daniel.priv.no/ Copyright © 2020 Daniel Aleksandersen. https://www.ctrl.blog/assets/favicon/favicon.svg 2020-10-15T23:07:00Z weekly 10 urn:uuid:a0ca138d-1f14-4938-81af-dbae88d95471 2020-01-09T12:17:00Z 2020-01-09T12:17:00Z .blog vs .com TLD performance Established top-level domain resolves faster than newfangled .com domain. <p>BunnyCDN shared some interesting performance benchmarks of the name servers responsible for some generic top-level domains (gTLD). They measured from 50 locations around the world.</p> <p><a href="https://www.ctrl.blog/entry/dotblog-tld-performance.html#src=feed">Read more …</a></p> urn:uuid:fff4c0f2-4043-4acb-89c9-aac5de1151a0 2019-11-19T17:25:00Z 2020-10-15T23:07:00Z What to <link rel=dns-prefetch> and when to use preconnect What to <code translate=no>&lt;link rel=dns-prefetch&gt;</code> and when to use <code translate=no>preconnect</code> Learn the difference between dns-prefecth vs preconnect, how to work around browser bugs, and when to use which? iOS and Safari requires special attention. <p>The <code>dns-prefetch</code> resource hint is intended to look-up domain names before the browser would otherwise know that they’d be needed in the near future. It’s a quick way to speed up the loading of external page resources.</p> <p><a href="https://www.ctrl.blog/entry/dns-prefetch-preconnect.html#src=feed">Read more …</a></p> urn:uuid:36adf2ba-8873-4aa3-a854-cc4791ce291b 2019-06-08T23:09:00Z 2019-08-05T19:21:00Z How to disable outgoing mDNS broadcasts on Linux Tutorial for quieting Multicast DNS using various firewall front-ends for Linux’s iptables firewall. <p>Multicast DNS (mDNS) is a convenient method for auto-discovering other computers and services (DNS-SD) on the local network. However, in some situations you don’t want to announce your services or even broadcast your presence on a particular network. Here is how to block outgoing mDNS broadcasts on Linux.</p> <p><a href="https://www.ctrl.blog/entry/how-to-disable-mdns-linux.html#src=feed">Read more …</a></p> urn:uuid:d9ecf83b-9dfa-4f22-8b43-1db6cee44883 2019-02-26T18:08:00Z 2019-02-26T18:08:00Z Hurricane Electric secondary DNS adds support for TSIG authentication I asked HE DNS if they had plans to support TSIG authenticated AXFR requests. Weeks later they rolled out support for the feature. <p>I published a disappointing comparison of secondary authoritative DNS service providers last month. There wasn’t any clear winners as even the most expensive services lacked proper domain zone transfer (AXFR) authentication (TSIG). However, one of the providers have stepped up their game and have added TSIG support.</p> <p><a href="https://www.ctrl.blog/entry/he-2nd-dns-tsig.html#src=feed">Read more …</a></p> urn:uuid:20975c12-4586-4670-9131-65c44c9ccd13 2019-02-13T01:06:00Z 2019-02-13T01:06:00Z Well-Known URI vs DNS-SD for distributed web service-discovery I compare the resilience of DNS Service-Discovery vs HTTPS Well-Known URIs when routing distributed internet traffic around censorship. <p>In this article, I want to discuss the use of Well-Known URIs and DNS based service discovery (DNS-SD) methods for mapping domain names to resources on the distributed web. I’ll focus on the different method’s ability to route around internet censorship and their centralization, and talk about some suggestions for improving the current implementations used by distributed web projects.</p> <p><a href="https://www.ctrl.blog/entry/wellknown-vs-dnssd-for-dweb.html#src=feed">Read more …</a></p>