DNS SEC Update set for May 5th

Just a reminder, I haven’t seen too much more about this:

May 5, at 17:00 UTC — at this time DNSSEC will be rolled out across all 13 root servers. Some Internet users, especially those inside corporations and behind smaller ISPs, may experience intermittent problems. The reason is that some older networking equipment is preconfigured to block any reply to a DNS request that exceeds 512 bytes in size. DNSSEC replies are typically four times as large.

“DNSSEC is in fact already rolled out across most of the world’s 13 root servers. … But to date … it would only have resulted in a slight lag in the loading of a web page for those with outdated network equipment. The beauty of DNS is that should a request made to one root server not receive a response, the DNS resolver on a user’s machine simply makes the same request along the line of the 13 root servers until it gets a satisfactory response. But on May 5, once all 13 root servers are live with the DNSSEC signatures, responses from all 13 root servers won’t make it back inside the corporate LAN on some older systems. … The problem may take several days to surface and be inconsistent from one user’s PC to the next. A user at one machine who hasn’t switched on his PC for two or three days will have no access to the Internet. A user who left his machine on the night before will have some pages — and responses from DNS servers — cached on his machine, and will still have connectivity.”

See also, “https://cyberarms.wordpress.com/2010/04/14/dnssec-secure-dns-for-internet-on-the-way/

~ by D. Dieterle on May 4, 2010.

5 Responses to “DNS SEC Update set for May 5th”

  1. Okay, this could have just been a wierd coincidence. But my cable modem just dropped the DNS. It has never done that. I contacted my cable provider and they said nothing was wrong with the router and they have no known issues.

    Rebooted router, and restarted PC, everything is back to normal. Like I said, could be a coincidence, or it could be signs of things to come.

  2. ^^^I have had several connectivity issues of late.^^^
    Maybe this is why my facebook page takes two days to show me notifications? LOL

  3. I hear you, I still can’t upload graphics to wordpress, that started yesterday. Also had to reboot my router for a second time today. Maybe the terrorists are giving up on armed conflict and hitting Americans where it really hurts, their social networks!

  4. Dig It:

    AD JS (Active Directory Jihad Services)

    Love it!

  5. […] DNS SEC Update set for May 5th « CYBER ARMS – Computer Security […]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: