Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
lockywolf2017-01-29 09:16:17
Domain Name System
lockywolf, 2017-01-29 09:16:17

Are there addresses from the list of Roskomnadzor signed by dnssec?

Good time.
I set up bind and try to get it to check dnssec. Accordingly, my provider filters requests to global dns, returning the ip of its own ns-server, which subsequently issues the IP of its own server to all requests to blocked addresses. That is, it performs a MITM attack.
From my understanding, this should not be possible using dnssec. However, again, as I understand it, dnssec for this must be enabled on the "blocked" addresses themselves.
Which begs the question, does anyone know any dnssec-signed stoplist addresses?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
E
Eugene2015-03-05 18:14:04
bind9 and ssl server how to implement? 1Reply
D
Dmitry2017-03-20 12:26:42
How to add an arbitrary A-record in Windows Server DNS? 1Reply
M
maxwell2015-03-21 15:55:40
Trouble with CloudFlare? 0Reply
D
Dmitry2017-03-28 09:19:28
No one has had problems with 8.8.8.8 lately? 3Reply
H
Hosting Yaroslavl2021-03-18 02:46:18
How to move from one VPS server to another (with a change of ip) without data desynchronization in the database? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question