Secure Domain Name System (DNS) Deployment 2026 Guide [pdf]
XzetaU8
91 points
8 comments
March 24, 2026
Related Discussions
Found 5 related stories in 54.3ms across 3,471 title embeddings via pgvector HNSW
- Age verification now required for DNS resolution StuntPope · 47 pts · April 01, 2026 · 47% similar
- Quad9 Enables DNS over HTTP/3 and DNS over QUIC itchingsphynx · 54 pts · April 02, 2026 · 45% similar
- macOS 26 breaks custom DNS settings including .internal adamamyl · 342 pts · March 19, 2026 · 42% similar
- Cyber.mil serving file downloads using TLS certificate which expired 3 days ago Eduard · 158 pts · March 23, 2026 · 42% similar
- Capability-Based Security for Redox: Namespace and CWD as Capabilities ejplatzer · 40 pts · March 27, 2026 · 40% similar
Discussion Highlights (3 comments)
bob1029
> ECC algorithms with smaller key sizes would be more vulnerable to a quantum attack, as it would require a currently theoretical quantum computer with fewer qubits than would be required for an RSA key with the same cryptographic strength [25]. This is what keeps me skeptical about ECC. RSA is really chunky, and maybe that's a fundamental advantage from an information theory perspective. Compromising on the crypto scheme because we can't fit inside UDP seems like a cursed path. [25]: https://arxiv.org/abs/1706.06752
progbits
> 864000 seconds (1 day) Could use some proofreading.
antonyh
I do wish these types of document were published as HTML and not just as PDF.