Tag: dns
[RFC 7489] Domain-based Message Authentication, Reporting, and Conformance (DMARC)
[RFC 7489] Domain-based Message Authentication, Reporting and Conformance (DMARC) è un meccanismo scalabile attraverso il quale una organizzazione dalla quale originano e-mail può esprimere criteri a livello di dominio e preferenze per la validazione, la…
Reverse DNS lookup for Italian Government’s mail exchangers (UPDATES 1-2)
Bleeding edge technology? Definitely not. However, Public Administrations seem to ignore some well known recommendations (RFC 1033, RFC 1912) for their Internet presence and services. This article shows the current status of italian ministries’ (or departments’) mail exchangers: domain,…
“Il costo di DNSSEC” di Geoff Huston
Propongo, con il permesso dell’autore, la mia versione dall’inglese di questo interessante articolo di Geoff Huston apparso nel mese di agosto 2014 su The ISP column dal titolo “The Cost of DNSSEC“. Ti occupi di DNS e non hai ancora…
DNSSEC, unidentified flying object in the sky over italian Public Administration
Q: “Are you running DNSSEC?” A: “Pardon, what am I supposed to run?” Ok, DNNSEC (a set of extensions to DNS documented since 2005 by RFCs 4033, 4034, 4035) is not so widely adopted but…
Anti spam measures adopted by italian Public Administrations: mostly SPF
It’s a long way to run, granted. Italian Public Administrations are adopting some anti spam measures as SPF (Sender Policy Framework) and DMARC (Domain-based Message Authentication, Reporting & Conformance) TXT records in their authoritative name…
How to run master NSD on FreeBSD 10.0
[Some of you asked for an updated version of the NSD how to. Here it is, enjoy.] NSD is a complete implementation of an authoritative DNS nameserver written and maintained by NLnet Labs. Authoritative and not…
How to configure Unbound with DNSSEC validation on FreeBSD 9.0
Unbound is an implementation of a DNS resolver that does caching and DNSSEC validation. It’is written and maintained by NLnet Labs. It’s recursive and caching so if you need an authoritative DNS nameserver please consider using NSD and…
How to run master and slave YADIFA on FreeBSD 9.0
YADIFA is a nameserver implemented by EURid and is a clean implementation to serve as an alternate domain name server for TLD operators and ISPs alike. Actually it’s at an early stage of development: the…
How to run OpenDNSSEC with NSD on FreeBSD 9.0
Domain Name System Security Extensions (DNSSEC) is a set of extensions to DNS documented since 2005 by RFCs 4033, 4034, 4035. Today there are some additions to those extensions. DNSSEC adds an end to end…
How to run master and slave NSD on FreeBSD 9.0
[Running FreeBSD10? Check my new article: How to run master NSD on FreeBSD 10.0]. NSD is a complete implementation of an authoritative DNS nameserver written and maintained by NLnet Labs. Authoritative and not recursive. If you…