Tag Archives: dns

Google Chrome 將 .dev 設為 HSTS Preload 名單

其實是兩件事情... 第一件是 Google Chrome 把 .dev 結尾的網域設為 HSTS Preload 名單:「Chrome to force .dev domains to HTTPS via preloaded HSTS」。 第二件事情是隨著第一件來的,HSTS Preload 必須由 domain 擁有人提出啊... 所以 .dev 是合法的 TLD (gTLD)? 文章作者給了答案,是的,而且就是 Google 擁有的: Wait, there's a legit .dev gTLD? Yes, unfortunately. … Continue reading

Posted in Computer, DNS, Murmuring, Network, Programming, Security, Service, WWW | Tagged , , , , , , , , , , , , , , , , | Leave a comment

Cloudflare 的 F-Root

Cloudflare 從三月底開始跟 ISC 簽約合作,服務 F-Root 這個 DNS Service (f.root-servers.net):「Delivering Dot」。 Since March 30, 2017, Cloudflare has been providing DNS Anycast service as additional F-Root instances under contract with ISC (the F-Root operator). 在 Linode 東京的機器上面可以看出來 www.cloudflare.com 走的路徑跟 f.root-server.net 相同: gslin@one … Continue reading

Posted in CDN, Cloud, Computer, DNS, Murmuring, Network, Service | Tagged , , , , , , , , , , | Leave a comment

Route 53 的 Query 記錄

Amazon Route 53 可以收 query log 了,會丟到 CloudWatch Logs:「Amazon Route 53 Announces Support For DNS Query Logging」。 If you are using Amazon Route 53 as your public, authoritative DNS, you will now have the capability to easily log DNS queries … Continue reading

Posted in AWS, Cloud, Computer, DNS, Murmuring, Network, Service | Tagged , , , , , , , , | Leave a comment

Amazon Route 53 對地區的微調功能

Amazon Route 53 推出新功能,針對地區微調資源的比重:「Amazon Route 53 Traffic Flow Announces Support For Geoproximity Routing With Traffic Biasing」。 範例大致上說明了這個功能的能力,假設你在兩個點都有服務可以提供,你可以利用這個功能微調某個比率到某個點: For example, suppose you have EC2 instances in the AWS US East (Ohio) region and in the US West (Oregon) region. When a … Continue reading

Posted in AWS, Cloud, Computer, DNS, Murmuring, Network, Service | Tagged , , , , , , , , , , | Leave a comment

Amazon Route 53 支援 CAA record 了

Amazon Route 53 宣佈支援 CAA record 了:「Announcement: Announcement: Amazon Route 53 now supports CAA records」、「Amazon Route 53 now supports CAA records」。 這是一個被動性的 workaround,要求 CA 本身要支援 DNS CAA,所以他沒辦法防止 CA 本身作惡誤簽,但因為負作用與技術債的可能性不高,在 CA/Browser Forum 上被通過強制要求支援了。(參考「未來 CA 將會強制要求檢查 DNS CAA record」) Gandi 的 DNS … Continue reading

Posted in AWS, Cloud, Computer, DNS, Murmuring, Network, Security, Service | Tagged , , , , , , , , , , | Leave a comment

Amazon Route 53 將會加緊支援 DNS CAA

看到 Amazon Route 53 要支援 DNS CAA 的消息:「Announcement: Announcement: CAA Record Support Coming Soon」。 裡面有提到 CA/Browser Forum 的決議,要求各瀏覽器支援 DNS CAA: On March 8, 2017, the Certification Authority and Browser Forum (CA/Browser Forum) mandated that by September 8, 2017, CA’s are … Continue reading

Posted in AWS, Cloud, Computer, DNS, Murmuring, Network, Security | Tagged , , , , , , , , , , , , , | Leave a comment

直接接管整個 .io 的網域...

在「The .io Error – Taking Control of All .io Domains With a Targeted Registration」這邊看到的 XDDD 其實就是這樣: ;; AUTHORITY SECTION: io. 172800 IN NS ns-a1.io. io. 172800 IN NS ns-a2.io. io. 172800 IN NS ns-a3.io. io. 172800 IN NS ns-a4.io. io. … Continue reading

Posted in Computer, DNS, Murmuring, Network, Security, Service | Tagged , , , , , , , | 2 Comments

除了 DNS 的 TTL 外,還有瀏覽器本身的 cache time...

在看「Reviewing Fastly’s New Approach To Load Balancing In The Cloud」這篇的時候被提醒: However, most browsers have implemented their own caching layer that can override the TTL specified by the server. In fact, some browsers cache for 5-10 minutes, which is an eternity … Continue reading

Posted in Browser, Computer, DNS, Firefox, GoogleChrome, IE, Murmuring, Network, Software, WWW | Tagged , , , , | 1 Comment

GitHub 也自己搞了一套管理多家 DNS 的程式...

在 StackOverflow 團隊發表完自己開發管理 DNS 的程式後 (參考「StackOverflow 對於多 DNS 商的同步方式...」),GitHub 也來參一腳:「Enabling DNS split authority with OctoDNS」。 可以看到 GitHub 用了兩家的系統 (AWS 的 Route 53 與 Dyn 的服務): ;; AUTHORITY SECTION: github.com. 172800 IN NS ns1.p16.dynect.net. github.com. 172800 IN NS ns3.p16.dynect.net. github.com. 172800 … Continue reading

Posted in AWS, Cloud, Computer, DNS, Murmuring, Network, Security, Software | Tagged , , , , , , , , | Leave a comment

Dropbox 的桌面端應用支援 IPv6 環境了...

算是宣示性質的新聞稿吧,畢竟官網與 blog 以及 API 都還是沒 AAAA record:「Adding IPv6 connectivity support to the Dropbox desktop client」。 文章裡面提到支援 IPv6 only network,應該是指 ISP 有支援 NAT64 轉換的情況下可以使用 Dropbox 資源,而不是 Dropbox 整個 IPv6 ready... gslin@home [~] [17:49/W4] dig www.dropbox.com aaaa @8.8.8.8 ; DiG 9.9.5-3ubuntu0.14-Ubuntu www.dropbox.com … Continue reading

Posted in Computer, Murmuring, Network, Software | Tagged , , , , , , , , | Leave a comment