Expand articles
/
All articles
Atom feed 
- 2024-07-25 - CVE-2024-1737 - RRset limits in zones
- 2021-11-23 - How about using 1Password with Ansible?
- 2020-06-03 - Managed Zone Service CNAME relaxation
- 2020-04-30 - Stealth secondaries and Cisco Jabber
- 2020-04-27 - Release announcement: nsdiff-1.79
- 2020-02-27 - Firefox and DNS-over-HTTPS
- 2020-02-18 - DNS server resilience and network outages
- 2020-02-14 - SHA-1 and DNSSEC validation
- 2020-01-29 - Review of 2019
- 2020-01-24 - Managed Zone Service improvements
- 2020-01-15 - DNSSEC algorithm rollover HOWTO
- 2020-01-09 - SHA-1 chosen prefix collisions and DNSSEC
- 2020-01-07 - SHA-1 is a shambles
- 2019-12-18 - DNS delegation updates
- 2019-12-12 - A WebDriver tutorial
- 2019-11-21 - Jackdaw Apache upgrade
- 2019-11-18 - Make before break
- 2019-11-13 - YAML and Markdown
- 2019-10-17 - BIND security release
- 2019-10-01 - Upcoming change to off-site secondary DNS
- 2019-09-28 - Metadata for login credentials
- 2019-09-19 - Firefox and DNS-over-HTTPS
- 2019-09-03 - Migrating a website with Let's Encrypt
- 2019-08-29 - Work planning
- 2019-07-22 - Brexit and .eu domain names (update)
- 2019-07-18 - More complicated ops
- 2019-07-12 - Refactored error handling
- 2019-07-04 - Eight ops pages ported
- 2019-06-27 - DNS update confirmations
- 2019-06-24 - DNS-over-HTTPS and encrypted SNI
- 2019-06-20 - MZS web site upgrade failed
- 2019-06-20 - BIND 9.14.3 and CVE-2019-6471
- 2019-06-18 - SACK panic
- 2019-06-17 - Clustering Let's Encrypt with Apache
- 2019-06-13 - MZS web site upgrade, Thurs 20 June
- 2019-06-12 - DNS server upgrades, Tues 18 June
- 2019-05-15 - First ops page ported
- 2019-05-07 - Oracle connection timeouts
- 2019-05-01 - Reskinning IP Register
- 2019-04-25 - BIND 9.12.4-P1 and Ed25519
- 2019-04-16 - Jackdaw and Raven
- 2019-03-15 - Bootstrapping Let's Encrypt on Debian
- 2019-02-27 - BIND 9.12.3-P4 and other patch releases
- 2019-02-07 - KSK rollover project status
- 2019-01-30 - DNSSEC key rollover automation with BIND
- 2019-01-29 - Release announcement: nsdiff-1.77
- 2019-01-28 - Old recdns.csx names have been abolished
- 2019-01-25 - Superglue with WebDriver
- 2019-01-18 - Happenings in DNS
- 2019-01-17 - Old recdns.csx names to be abolished
- 2019-01-14 - Preserving dhcpd leases across reinstalls
- 2019-01-11 - Review of 2018
- 2019-01-09 - Brexit and .eu domain names
- 2019-01-08 - Notes on web browser automation
- 2019-01-07 - The missing checklist
- 2019-01-02 - Notes on recent DNS server upgrades
- 2018-12-19 - More DNS server rebuilds
- 2018-12-12 - Authoritative DNS server rebuilds
- 2018-12-06 - IPv6 prefixes and LAN names
- 2018-11-30 - Postcronspam
- 2018-11-26 - New servers in Maths, and other sample.named.conf changes
- 2018-11-20 - New DNS web site
- 2018-10-23 - DNS-OARC and RIPE
- 2018-10-11 - DNSSEC root key rollover this Thursday
- 2018-10-10 - DNS-over-TLS snapshot
- 2018-10-08 - DNSSEC root key rollover this Thursday
- 2018-09-20 - BIND 9.12.2-P2 and other patch releases
- 2018-09-05 - DNS-over-TLS and DNS-over-HTTPS
- 2018-09-04 - Renaming and renumbering the DNS servers
- 2018-08-13 - Non-interactive access to the xlist_ops page
- 2018-08-03 - BIND 9.12.2 and serve-stale
- 2018-06-21 - New IPv6 prefix and reverse zone
- 2018-06-14 - DNSSEC validation and the root key rollover
- 2018-06-13 - External references to IP addresses
- 2018-05-31 - Long-form domain aliases
- 2018-05-30 - Web servers on bare domains
- 2018-05-21 - BIND security release
- 2018-04-24 - A note on prepared transactions
- 2018-03-28 - DNS server QA traffic
- 2018-03-27 - More upgrades
- 2018-03-26 - IPv6 DAD-die issues
- 2018-03-02 - Transactions and JSON-RPC
- 2018-02-20 - Upgraded to BIND 9.12.0
- 2018-02-16 - Deprocrastinating
- 2018-02-12 - User interface sketch
- 2018-02-01 - ANAME vs aname
- 2018-01-23 - Support for Ed25519 SSHFP records
- 2018-01-12 - An interesting bug in BIND
- 2018-01-09 - High-level API design
- 2017-12-24 - The first Oracle to PostgreSQL trial
- 2017-12-19 - IP Register schema wishlist
- 2017-12-12 - How to get a preseed file into a Debian install ISO
- 2017-12-06 - Authentication and access control
- 2017-10-13 - Relaxed rules for external references from the cam.ac.uk domain
- 2017-10-05 - Ongoing DNSSEC work
- 2017-10-02 - DNSSEC lookaside validation decommissioned
- 2017-09-29 - DNSSEC root key rollover postponed
- 2017-09-27 - Split views for private.cam.ac.uk
- 2017-09-06 - A Cambridge Catalog Zone
- 2017-09-01 - Deleting "localhost" entries from the cam.ac.uk DNS zone
- 2017-07-18 - CST delegated, plus DNSSEC-related news
- 2017-07-11 - BIND 9.11
- 2017-06-30 - BIND CVE-2017-3142 and CVE-2017-3143
- 2017-04-13 - April BIND security release
- 2017-03-20 - An update on Cloudflare
- 2017-03-06 - Security upgrade
- 2017-01-30 - SPF records
- 2017-01-12 - Name servers need patching: four BIND CVEs
- 2016-12-23 - Streaming replication from PostgreSQL to the DNS
- 2016-11-29 - Cloudflare
- 2016-11-01 - Recursive servers need patching: BIND CVE 2016-8864
- 2016-10-05 - Urgent patching required: BIND CVE 2016-2776
- 2016-09-28 - Urgent patching required: BIND CVE 2016-2776
- 2016-04-06 - recovering from the DNS update service outage
- 2016-03-10 - BIND CVE-2016-1286 etc.
- 2016-03-02 - recursive DNS server packet filters
- 2016-02-05 - DNS DoS mitigation by patching BIND to support draft-ietf-dnsop-refuse-any
- 2016-01-20 - January BIND security release
- 2015-12-17 - BIND security release
- 2015-10-22 - Isaac Newton Institute delegated
- 2015-10-21 - Cutting a zone with DNSSEC
- 2015-09-28 - (lack of) DNS root hints
- 2015-09-25 - New CUDN-wide private addresses 10.128.0.0/9
- 2015-09-03 - BIND security update
- 2015-07-29 - CVE-2015-5477: critical remote crash bug in BIND
- 2015-02-18 - More frequent DNS updates
- 2015-02-16 - DNS server rollout report
- 2015-02-15 - New DNS servers
- 2015-02-09 - DNS server upgrade
- 2015-01-30 - Recursive DNS rollout plan - and backout plan!
- 2015-01-17 - BIND patches as a byproduct of setting up new DNS servers
- 2015-01-09 - Recursive DNS server failover with keepalived --vrrp
- 2015-01-07 - Network setup for Cambridge's new DNS servers
- 2014-11-27 - Uplift from SCCS to git
- 2014-10-30 - The early days of the Internet in Cambridge
- 2014-07-23 - Some small changes to sample.named.conf
- 2014-07-14 - SRV records
- 2014-07-08 - SSHFP records
- 2014-07-07 - DHCP-related data in the IP registration database
- 2014-05-20 - Representing network access controls in the database
- 2014-02-18 - Upgrade to BIND 9.9.5 may possibly cause problems
- 2014-01-26 - The "consolidated reverse zone" in-addr.arpa.cam.ac.uk is now signed
- 2013-11-19 - Computer Laboratory zones are now signed
- 2013-07-01 - New xlist_ops web page
- 2012-07-08 - Removing some registrations in dlv.isc.org
- 2012-02-07 - Phasing out of the old IPv6 address block
- 2011-11-16 - New BIND vulnerability CVE-2011-4313
- 2011-08-23 - IPv6 addresses of the CUDN central nameservers
- 2011-07-05 - Two ISC advisories about BIND
- 2011-06-21 - New IPv6 address block for Cambridge
- 2011-05-27 - BIND high severity advisory CVE-2011-1910
- 2011-05-22 - New box_ops web page
- 2011-03-09 - Changes to sample.named.conf for delegated Maths domains
- 2011-03-03 - Consolidated reverse zone in-addr.arpa.cam.ac.uk
- 2011-02-25 - Consolidated reverse zone in-addr.arpa.cam.ac.uk
- 2011-02-16 - Consolidated reverse zone in-addr.arpa.cam.ac.uk
- 2010-11-26 - Consolidated reverse zone in-addr.arpa.cam.ac.uk
- 2010-07-19 - Signed root zone
- 2010-06-21 - New root hints file, and validating DNSSEC-signed zones
- 2010-06-09 - cs-nameservers-announce copies on ucam.comp.tcp-ip newsgroup
- 2010-04-26 - Updates to sample.named.conf
- 2010-02-03 - Rationale for the recent changes to recommended AD configurations
- 2009-12-09 - Unicode in the IP registration database
- 2009-09-29 - Problem with SOA serial numbers and Windows DNS Server
- 2009-09-28 - Problem with SOA serial numbers and Windows DNS Server
- 2009-09-24 - Two reverse zones to be signed on Tuesday 29 September
- 2009-07-31 - cam.ac.uk to be signed on Monday 3 August
- 2009-07-29 - BIND security alert
- 2009-07-21 - SOA serial numbers in UCS-maintained zones
- 2009-07-01 - More about DNSSEC validation, and signing the cam.ac.uk zone
- 2009-06-16 - Recursive nameservers using DNSSEC validation
- 2009-05-28 - More about DNSSEC validation, and signing the cam.ac.uk zone
- 2009-05-06 - Recursive nameservers using DNSSEC validation available for testing
- 2009-03-18 - Use of DNAMEs for reverse lookup of CUDN addresses
- 2009-03-18 - Balancing the use of CUDN central recursive nameservers
- 2009-03-17 - Frequency of DNS updates
- 2008-12-15 - Representing network access controls in the database
- 2008-09-30 - cs-nameservers-announce copies on ucam.comp.tcp-ip newsgroup
- 2008-08-03 - pmms.cam.ac.uk zone should no longer be slaved
- 2008-07-09 - Multiple DNS implementations vulnerable to cache poisoning
- 2008-05-13 - General relaxation of the rules on use of sub-domains
- 2008-02-05 - IPv6 addresses for the root nameservers
- 2008-01-30 - More changes to the sample nameserver configuration
- 2007-11-03 - Change of address of a root nameserver
- 2007-08-23 - Relaxation of the name-to-domain rules for CNAMEs
- 2007-08-20 - Changes to the sample nameserver configuration
- 2007-07-16 - Recent problems with CUDN central nameservers
- 2007-04-23 - Splitting of authoritative from recursive nameservers
- 2007-03-21 - Splitting of authoritative from recursive nameservers
- 2007-03-08 - Splitting of authoritative from recursive nameservers
- 2006-10-04 - Announcement list converted to Mailman
- 2006-05-08 - Non-interactive use of the IP registration database
- 2005-12-19 - More delegated control of CNAMEs