Internet Archive

http://www.computerworld.com/s/article/9247616/4_things_to_do_now_to_get_ready_for_the_Internet_of_Things

This is one of the areas where I think the results will live up to, and even exceed, the hype and expectations.  This was a pretty good read, with a combination of real world examples and some forward looking expectations that seem to be more than pie in the sky.

Be the first to comment

DNS questions for Cisco IOS DNS server

Posted October 13, 2013 By Landis V
  • Caching:  Does the IOS DNS server cache TXT and SRV records?  How about negative caching (DNS NCACHE, RFC2308)?
    • ANSWER (partial):  Yes, it appears that at the very least it supports caching of TXT and SRV records.
  • Which provides better DNS behavior for clients – assigning a search list to the client, or having the router act as a forwarder and check the search domains itself?  Pros and cons for each?
    • ANSWER (partial):  It doesn’t appear that IOS actually postpends the search suffixes for some reason.  Eventually I will go back and attempt to address this; at the moment I suspect it’s my configuration rather than a Cisco bug, but as easy as it seems to be to hit bugs in IOS code anymore, I won’t completely rule that out.
Be the first to comment

http://www.networkworld.com/news/2013/091713-proposed-changes-to-whois-system-273914.html

I can see both sides of this.  I think there is significant benefit to having the name and contact information associated with the domain record.  I think it promotes a certain amount of responsibility.  However, I have also had instances where it would be nice to privatize or restrict the visibility that information, and I have at times taken advantage of registrar privacy features.

Be the first to comment

Your own Dynamic DNS in 3 steps | The Nexus

Posted September 16, 2013 By Landis V

http://nexus.zteo.com/blog/your-own-dynamic-dns-in-3-steps/

Interesting idea, perhaps provides a little bit of added flexibility (and reduced cost) compared to Dyn, though I don’t have any complaints about Dyn at this point.  Also review the DDNS and TSIG articles on Wikipedia as well as RFC2136.  Still thinking that perhaps a hybrid HTTPS method; would allow any web server one had available to potentially be able to serve as a receiver for the updates as long as it had at least enough outbound access to give the information to the BIND server, allowing for possibly a bit more obscurity in the update path; also wouldn’t require that whatever host received the update information not have BIND running (i.e., perhaps a web host) as long as it could establish an outbound communication to the BIND server – or write to some file that the BIND server could retrieve.

Interesting question therefrom – short of a VPS, is it possible to use client-side certificates to identify a client to a webserver?  How about self-signed client certificates?

Be the first to comment

Nope, mesh networks won’t stop the NSA

Posted September 16, 2013 By Landis V

http://www.networkworld.com/community/blog/nope-mesh-networks-wont-stop-nsa

Be the first to comment

NMAP open port statistical analysis

Posted August 22, 2013 By Landis V

https://svn.nmap.org/nmap/nmap-services

Found this while looking for honeypot/log information on scanning frequencies of given ports.

Be the first to comment

http://commons.codeforamerica.org/

I was looking for something like this recently.   Need to explore it a little further.

Be the first to comment