Passionate about networking protocols, the Internet, how to measure it and big data. Overall a curious mind and problem solver.
Interests & profession: #bigdata #dns #bgp #ddos #dataengineering #infosec #threatintel
| Homepage | https://maxresing.de |
| https://linkedin.com/in/max-resing/ |
A couple of weeks ago, a new domain name made it's appearance on the domain name ranking of #Cloudflare. Shortly later, the company redacted the name, to avoid promoting a #botnet. Recently, the domain name disappeared from Cloudflare's #Radar. A brief check shows that the domain still exists and is active. Is it simply not resolved by Cloudflare's #DNS resolvers? Or did the company prevent that this domain name makes it into their feeds?
Exploring some insights of the #DNS root servers, and I discovered this small bump of NOTIMP repsonse codes of a.root-servers.net, operated by #Verisign. I checked other server instances with public statistics, and also k.root-servers.net, operated by #RIPE observed an uptick in REFUSED responses at around that time.
Does anyone have a clue what was going on last year shortly before the Christmas days?
It looks like #Archlinux still observes operational impact of an ongoing #DDoS attack of some adversary. If I recall correctly, it was late August when they had the first issues. The Internet is really not kind to these benevolent folks spending hours and hours of their own time on maintaining and developing Arch.
The last downtime of the #Wiki and the #AUR was just yesterday.
I remember the days, when the idea of #DNS4EU was introduced. It felt like a "response" from NextDNS to launch their own #European solution of a public resolver to get ahead of the launch of DNS4EU and acquire some of the market share. With that, they convinced me, that it does not have to take years, to launch a new DNS service. By now, around three years have passed until the announcement of the discontinuation of the service.
Fare well, old friend!
While some report increased latency or no visible effect, we at #ASERT observed a noticeable decline of around 20% of egress traffic from Finland after the cut of the C-Lion1 submarine cable in the early morning hours of November 18. The traffic has yet to normalize for the past 72 hours.
Looks like Spotify just went down. Curious, what's going on with all the recent #infosec related incidents, e.g. the recent issues of #GoDaddy, #Microsoft #Azure or the #Crowdstrike mayhem.
Unfortunately, I never had the chance or time to attend one of the big #hacker conferences, but I was really impressed by the idea of a"Datenklo" (German for data toilet). Those are repurposed portable toilets which serve as cabinets for switches and communication gear. Awesome and creative idea!
Picture taken from the #Wikipedia article:
https://en.wikipedia.org/wiki/Datenklo
Today @netscout , we observed the effects of what seems to have been the second in the most recent series of deliberate shutdowns of Internet traffic by the Iraqi government; these interruptions are apparently intended to curtail the ability of students to cheat on nationwide educational exams. It is notable that we observe significant spikes in traffic when connectivity is restored, presumably due to pent-up demand by Iraqi Internet users. This is a common phenomenon in cases of both deliberate and inadvertent interruptions in Internet connectivity, and can result in prolonged service disruption even after connectivity has been restored.
