DNS Hackathon 2023 — Connect to port 53!
During May 20–21 (the weekend before #RIPE86), 42+ hackers gathered from all corners of the world to work on DNS with the challenges of; Sustainability, Security (& Privacy) and Sovereignty.
We had 6 teams and 6+ projects:
- DApper — DNS and the Application layer
- diggin-in — experiments in meta-language creation for measuring DNS
- DNS-Today — DNS Traffic Monitoring and Classification
- DNS-oops — work on the personal draft for DNS out of protocol signaling
- DNS-Home-Appliance — run a low-cost but fast DNS home appliance
The hackathon was hosted by us (DNS-OARC), Netnod and RIPE NCC with the grateful support from our sponsors SIDN, NLnet Labs, ISC, Gcore and ICANN.
🏆️ Awards 🏆️
We had three categories of awards, in no particular order:
- DNS-oops was awarded “Most useful project for operators” for their work on out of band signaling, in practice, triggering BGP!
This project was also be presented at DNS-WG RIPE86, check slides and video recordings.
- DIG-alicious was awarded “Best teamwork, exemplified hackathon spirit” for their work on RIPE Atlas data compression and pre-scripting!
- DApper was awarded for “Team tackled a difficult/important challenge and progressed a potential solution” for their work on the DNS and the application layer!
For more information about #DNSHackathon2023, project results and presentations, see DNS Hackathon 2023 organization on GitHub.
This minor release just updated the DNSTAP protobuf specification to include the recent added DNS-over-QUIC transport protocol tag.
This release adds new configure option to control access to the output files, support for new DNSTAP tag (dnswire v0.4.0), improved DNSTAP message handling and updated Public Suffix List.
You can now set the user, group and file mode bits for the output files. See the new conf options
output_* in the man-page.
The DNSTAP message handling has been changed so that it checks for the required attributes per message type rather than overall. This should improve interoperability with other software.
This release fixes a segfault when doing DNS-over-HTTPS and changes the way maximum queries per second are handled.
The DNS-over-HTTPS module handled reconnecting incorrectly and destroyed the nghttp2 context during callbacks. Thanks to the help from Kyle Gillis (Akamai) and Mike Fornarolo (Akamai) it was quickly found and fixed.
The way maximum QPS is handled has been changed by Petr Špaček (ISC). The new way solves an over-shoot problem that happened due to max QPS being counted for the whole runtime and based on completed queries, not just sent.
A new option
qps_threshold_wait has also been added. This controls the threshold for using
nanosleep() between sending packet and the default is measured on start-up. If the time between packets, based on max QPS -Q, is smaller then no sleep will be performed. This improves performance when doing high max QPS limiting.
Portal — Event Discounts
A short behind-the-scenes update, I’m currently finalizing an update to the Portal to add management of our event discounts. The new way will greatly simplify management on our side and make it much easier for our members to use their discount codes instead of trying to find that email that probably got spam-tagged.
We plan to have this in place for the AGM in autumn as it’s a non-paid event so a good way to weed out any left-over bugs 😄️
See ya in Vietnam!