Posts categorized “Episodes”.

Episode 54?

Was it Cricket Liu Live or Ask Mr. DNS Live?  And does it really matter?

Shortly after the first anniversary of the massive DDoS attack on Dyn, Matt and Cricket broadcast a session on DDoS attacks and their relationship to DNS from the National Press Club in Washington, D.C.  They talked about how DDoS attacks target DNS infrastructure, how those attacks can exploit name servers, and recapped last year’s attack.  And they even examined some mechanisms that will help protect your DNS infrastructure from DDoS attacks:

https://www.infoblox.com/resources/webinars/cricket-liu-virtual-event-2017/

Episode 53

This isn’t exactly an episode, but Matt and Cricket recently recorded a short promo for Infoblox’s DNS Awareness Day campaign, and they decided to keep recording because Cricket wanted to hear about the recent DNSSEC Key Ceremony, in which Matt had served as the Ceremony Administrator.  So if you’re curious about how new root keys are generated and the sort of security that’s involved, tune in!

Oh, and there’s video, for the first time!

PlayPlay

Episode 52

In this episode, number 52 (cards in a deck! And just wait till we hit 53, which has special significance!), Matt and Cricket are joined by a pantheon of the gods of DNS.  However, since they neglected to ask any of the speakers to introduce themselves, you’ll just have to guess, Band Aid “Do They Know It’s Christmas”-style, who’s who.  (Olafur’s basically a gimme–our Boy George or Bono.)  We answer David Mar’s question about how to learn the basics of DNS and then recap some of the topics of the Inside Baseball meeting we’d been attending, graciously hosted by Salesforce and organized by Allison Mankin & company.

Play

Episode 51

In this episode, number 51, Matt and Cricket are joined by Kyle York and Joe Abley, respectively the Chief Strategy Officer and we-don’t-know-what of Dyn.  Kyle and Joe ably (ha!) fill in some of the details on the DDoS attack against Dyn on October 21 of last year.  And Kyle brags about the Patriots “dynasty,” which for three quarters sure looked like the pride that cometh before a fall, but holy cow!  Oh, and the guys jointly answer a question from Grant Taylor about a clever-but-frankly-awful way of adding a CNAME record to the apex of your zone and read a correction from Håkan Lindqvist about using underscores in certain fields of a cert.

Play

Episode 50

In this episode, the 50th–their golden episode!–Matt and Cricket are joined by Dan York of the Internet Society, who brings them up to date on DNSSEC adoption.  Then the trio answer questions from Matt’s former colleague Rick Andrews about the use of underscores in domain names and from Ben Dash about how some companies get around the prohibition against adding CNAME records to zone apexes.  Apices.  Whatever.

Play

Episode 46

This episode, number 46, features a guest appearance from Roy Arends of ICANN, whom Matt, Roy’s boss, swears wasn’t forced to participate in our forsaken podcast after midnight Oxford time.  Roy’s worked on Unbound, fpdns, DNSSEC, and Nominet’s Turing product.  We answer questions from Jacob Evans about mismatched SOA records and name server support for IPv6 anycast, and from long-suffering listener Evaggelos Balaskas about Response Policy Zones and why he sees different responses to queries for A records for google.com.  Along the way, Matt announces his new job, and while tracing the origin of Matt’s pet phrase, “There has been no time,” a discussion of the term “shirt-tail relatives” ensues, during which Cricket forgets the word “commutativity.”

Play

Episode 44

Well, we said we’d try to keep to a monthly schedule, and we arguably just made it!  This episode, number 44, features a special guest:  Andrew Sullivan, Matt’s colleague at Dyn and Chair of the Internet Architecture Board.  Now, if we’d planned ahead and let you know Andrew was going to be on the show, we could have let you know so that you could have submitted lots of thoughtful questions for him to answer, but by now you know not to expect that kind of forethought from us.  Instead, we asked him about stuff we’re interested in, including the IANA transition and ARCING, an IETF effort to identify alternative resolution contexts.  We also answer a question from Sheridan West about some suspicious-looking log messages from his name server and one from Jeff Helman about the right DNS configuration for handling multiple back-end web servers.

Play

Episode 40

In this 40th episode–a milestone!–Matt and Cricket answer long-suffering listener Grant Taylor’s question about sorting replies by type and wander into the Land of Happy Eyeballs, then explore an answer Joe Abley received from Mark Andrews of ISC.  Meanwhile, a discussion of the term G-job causes Matt to recount accidentally insulting a group of public servants, and both Matt and Cricket discuss their hope that the new AppleTV will lead to the end of their paying for streaming content they could have watched for free.

Play

Episode 39

In this star-studded episode, Matt and Cricket take advantage of a meeting of the DNS Cabal–that is, the annual “Inside Baseball” event–to answer Donald Rudder’s question about whether synthesizing NXDOMAIN responses to avoid random subdomain attacks would work with NSEC3 as well as NSEC records.  This is followed by a wildly entertaining (by DNS standards, anyway) discussion of the future of DNS, new TLDs, communication in the event of attacks, and more.

Guest-starring some of the brightest lights in DNS, including Kris Beevers, Brian Brady, David Dagon, Casey Deccio, Rob Fleischman, Olafur Gudmundsson, Shumon Huque, David “Tale” Lawrence, and Duane Wessels.

Play

Episode 38

In this episode, long-time (and likely now sole) listener Yiorgos Adamopoulos asks about the the process of signing the root zone, which Mr. DNS has some experience with.  Matt also recaps some of the goings-on at the latest DNS-OARC meeting in Amsterdam, omitting that which must stay in Amsterdam, but revealing some lapses from his DNSSEC RFC-editing days.

Play