jeeps • User • The Register Forums

Posts by jeeps

4 publicly visible posts • joined 29 Jul 2013

Running a DNSSec responder? Make sure it doesn't help the black hats

Wednesday 17th August 2016 12:44 GMT jeeps

Re: DNS uses UDP

Not necessarily, a number of vendors default max UDP size is 1500, you have to explicitly bump it up to 4096 to take full advantage of EDNS0.

0 0

Wednesday 17th August 2016 09:56 GMT jeeps

Re: DNS uses UDP

Not true, where possible DNS will attempt to respond using UDP, and it certainly wouldn't send a TCP response to a UDP query.

DNSSEC requires the use of EDNS0 which can expand the UDP packet size to 4096 bytes, and will negotiate the maximum packet size with the client (firewalls usually choke on these large packets so they have to work out what is the largest size that can be used). Only if the full response is too large to fit in the negotiated size will it set the TC flag indicating to the client to requery using TCP if they want the full response.

2 0

Fed up with poor Brit telly and radio output? Ofcom wants a word with YOU

Monday 29th July 2013 07:46 GMT jeeps

Think about the cars!

What exactly are OFCOM going to propose for the millions of cars on the UK roads that don't have DAB? Mine has DAB and I can only ever get a handful of channels at the best of times, all of which are commercial crap with adverts every 30 seconds.

3 1

Monday 29th July 2013 07:46 GMT jeeps

Your license fee only funds the BBC, the rest of the channels have to pay their own way through advertising.

0 2