Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
lockywolf2017-01-29 09:16:17
Domain Name System
lockywolf, 2017-01-29 09:16:17

Are there addresses from the list of Roskomnadzor signed by dnssec?

Good time.
I set up bind and try to get it to check dnssec. Accordingly, my provider filters requests to global dns, returning the ip of its own ns-server, which subsequently issues the IP of its own server to all requests to blocked addresses. That is, it performs a MITM attack.
From my understanding, this should not be possible using dnssec. However, again, as I understand it, dnssec for this must be enabled on the "blocked" addresses themselves.
Which begs the question, does anyone know any dnssec-signed stoplist addresses?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
P
pikla2015-07-30 10:08:04
How to switch between tabs? 7Reply
S
SavchenkoD2019-01-02 16:23:53
Remove everything from the site without hitting the subdomain? 2Reply
R
riobravo_ru2022-02-23 15:11:42
Why does coredns stop resolving requests? 0Reply
E
Edward2016-08-10 14:48:58
Is there a universal stub for the site? 1Reply
K
Kalombyr2019-01-17 17:55:02
How to redirect to a local address when there is no internet (squid and bind)? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question