News and updates

Unbound 1.5.1 released

Mon, 8 December 2014
CVE-2014-8602 denial of service fixed. Crash fix, compile fix. aaaa-filter patch.
Unbound website. Direct Download. Changes.

Unbound 1.5.0 released

Tue, 18 November 2014
DNS64, DNSTAP, better random numbers and ub_ctx_add_ta_autr(), num.query.tcpout=value, flush_negative, unblock-lan-zones conf and bug fixes
Unbound website. Direct Download. Changes.

ISC and NLnet Labs Joins Forces

Mon, 10 Nov 2014
ISC and NLnet Labs have signed an agreement to make available a combined Advance Security Notification subscription on their software products.
Press release.

getdns 0.1.5 beta released

Fri, 31 Oct 2014
Bugfixes and Hop-by-hop features for stub resolution
Poject page. Direct Download. API specification.

Net::DNS 0.81 released

Wed, 29 Oct 2014

Net::DNS::SEC 0.21 released

Fri, 24 Oct 2014
Single bugfix: canonicalize RRSIG's Signer Name
Net::DNS::SEC 0.21 release announcement. Project website. Direct Download. Changes.

NSD 4.1.0 released

Thu, 4 Sep 2014
features for less memory use, faster read/write, wildcard includes. Bugfixes, fixes slowdown after a long time.
NSD project page. Direct Download.

NSD 3.2.18 released

Mon, 28 Jul 2014

NLnet Labs Annual Report 2013

Wed, 27 MAy 2013
We are happy to present NLnet Labs Annual report 2013. In it we present an overview of Labs' various activities and describe their impact.
Annual Report 2013 (PDF).

Dnssec-Trigger 0.12 released

Thu, 22 May 2014
experimental package that provides DNSSEC on personal computers. Bug fixes, ip address change in default config, software update.
Details. Direct Download. Changes.

NSD 4.0.2 released

Wed, 12 Mar 2014
Fix memory leaks. Fix ipv6 by disable of recvmmsg. REFUSED for nonhosted zones.
NSD project page. Direct Download.

ldns 1.6.17 released

Fri, 10 Jan 2014
Many bugfixes, All current (draft) RR types implemented, Better ldns-verify-zone performance and Perl5 bindings with the DNS::LDNS module.
ldns project page. Direct Download. Changes.

Open Data Analysis to Retrieve Sensitive Information Regarding National-Centric Critical Infrastructures

Mon, 3 Feb 2014
Open Data repositories store a variety of information from country governments and private sectors. A concern is that with publishing data, sensitive information can be obtained by visual analytic techniques. The report shows that it is possible to retrieve precise locations where critical infrastructures overlap.
MSc. report (PDF).

Securing the last mile of DNS with CGA-TSIG

Tue, 8 Jan 2014
TSIG with shared keys is not scalable as a solution for the DNS last mile problem. CGA-TSIG extends TSIG with CGA so that shared secrets are no longer required. This research investigates the CGA-TSIG proposal by doing a security analysis and by making a PoC implementation in ldns.
MSc. report (PDF).

DNSSEC Audit Framework

Mon, 30 Dec 2013
In collaboration with SWITCH, the .CH and .LI registry, we have created a DNSSEC audit framework, that can be used to conduct a review of your or someone else's DNSSEC implementation.
PDF.

NLnet Labs Strategic Plan 2014

Wed, 9 Oct 2013
This is the first time we post this type of plan publicly. With this plan we intend to communicate who we are and where we are going, it serves the NLnet Labs Board and Staff but also the parties that support our mission and want to contribute financially.
Strategic Plan(PDF).

Experiences with MPTCP in an International OpenFlow Network

Tue, 3 Sep 2013
Keeping up with the network demand in order to transfer these data sets over the Internet is a challenge. Single links do not have enough capacity anymore. Therefore we need to install more interfaces in the servers and use all available paths in the network. In this paper we describe two new technologies that help to optimally use the capacity of all multiple paths simultaneously: OpenFlow and Multipath TCP (MPTCP).
TNC2013 paper (PDF).

Wed Sep 25 2013

© Stichting NLnet Labs

Science Park 400, 1098 XH Amsterdam, The Netherlands

labs@nlnetlabs.nl, subsidised by NLnet and SIDN.