Search
297 results for “nlnetlabs”
-
New canary Unbound QUIC build is out. Runs on basically any platform @nlnetlabs Unbound supports. Distroless, and built using our hardened native and mighty 🦾 OpenSSL 3.6.2 + QUIC build environment! (https://github.com/madnuttah/openssl-buildenv)
Full DNSSEC support, QUIC/HTTP3 via ngtcp2/nghttp3... So much fun!
cc @nlnetlabs 💚
https://github.com/madnuttah/unbound-docker
https://hub.docker.com/r/madnuttah/unbound
#DNS #DNSSEC #DoT #DoH #QUIC #HTTP3 #Unbound #FOSS #SelfHosting #Homelab #Privacy
-
@miodvallat Roooh comment il me la joue panoupanou !
Bon, mais c'est qui, sur mastodon, du coup ? @nlnetlabs I guess ?
-
I run my own #nameservers or #DNS if you will, and have done so for over 25 years. Initially based on #BIND (aka named) but I later moved to #PowerDNS, There are numerous frontends of varying quality available for PowerDNS. I have opinions on those, but this isn't about them.
For the secondary name servers (in the old and less enlightened days known as slaves) I've always run the same software as the primary. First BIND, then PowerDNS. Recently though, I've been testing out what appears to be a much simpler alternative: #NSD by #Amsterdam based NLnet Labs.
Using #CatalogZones - a new concept to me - I'm able to run secondaries with TSIG notifies and zone transfers as well as fully supported primary signed DNSSEC with a configuration of only 40 lines. No updates needed when adding or removing zones.
For this to work well though, some configuration is required for each zone on the primary. With a little trigger and function magic, this can be automized by the database.
Wheee!
-
@nlnetlabs.bsky.social NLnet Foundation funded open source WireGuard router in FPGA. Featuring PipelineC for cryptography blocks 🤓 github.com/JulianKemmer... #hardware #fpga #rtl #hdl #hls #verilog #vhdl #cryptography #wireguard #pipelinec
-
@nlnetlabs.bsky.social NLnet Foundation funded open source WireGuard router in FPGA. Featuring PipelineC for cryptography blocks 🤓 github.com/JulianKemmer... #hardware #fpga #rtl #hdl #hls #verilog #vhdl #cryptography #wireguard #pipelinec
-
@nlnetlabs.bsky.social NLnet Foundation funded open source WireGuard router in FPGA. Featuring PipelineC for cryptography blocks 🤓 github.com/JulianKemmer... #hardware #fpga #rtl #hdl #hls #verilog #vhdl #cryptography #wireguard #pipelinec
-
@nlnetlabs.bsky.social NLnet Foundation funded open source WireGuard router in FPGA. Featuring PipelineC for cryptography blocks 🤓 github.com/JulianKemmer... #hardware #fpga #rtl #hdl #hls #verilog #vhdl #cryptography #wireguard #pipelinec
-
New canary Unbound QUIC build is out. Runs on basically any platform @nlnetlabs Unbound supports. Distroless, and built using our hardened native and mighty 🦾 OpenSSL 3.6.2 + QUIC build environment! (https://github.com/madnuttah/openssl-buildenv)
Full DNSSEC support, QUIC/HTTP3 via ngtcp2/nghttp3... So much fun!
cc @nlnetlabs 💚
https://github.com/madnuttah/unbound-docker
https://hub.docker.com/r/madnuttah/unbound
#DNS #DNSSEC #DoT #DoH #QUIC #HTTP3 #Unbound #FOSS #SelfHosting #Homelab #Privacy
-
New canary Unbound QUIC build is out. Runs on basically any platform @nlnetlabs Unbound supports. Distroless, and built using our hardened native and mighty 🦾 OpenSSL 3.6.2 + QUIC build environment! (https://github.com/madnuttah/openssl-buildenv)
Full DNSSEC support, QUIC/HTTP3 via ngtcp2/nghttp3... So much fun!
cc @nlnetlabs 💚
https://github.com/madnuttah/unbound-docker
https://hub.docker.com/r/madnuttah/unbound
#DNS #DNSSEC #DoT #DoH #QUIC #HTTP3 #Unbound #FOSS #SelfHosting #Homelab #Privacy
-
New canary Unbound QUIC build is out. Runs on basically any platform @nlnetlabs Unbound supports. Distroless, and built using our hardened native and mighty 🦾 OpenSSL 3.6.2 + QUIC build environment! (https://github.com/madnuttah/openssl-buildenv)
Full DNSSEC support, QUIC/HTTP3 via ngtcp2/nghttp3... So much fun!
cc @nlnetlabs 💚
https://github.com/madnuttah/unbound-docker
https://hub.docker.com/r/madnuttah/unbound
#DNS #DNSSEC #DoT #DoH #QUIC #HTTP3 #Unbound #FOSS #SelfHosting #Homelab #Privacy
-
New canary Unbound QUIC build is out. Runs on basically any platform @nlnetlabs Unbound supports. Distroless, and built using our hardened native and mighty 🦾 OpenSSL 3.6.2 + QUIC build environment! (https://github.com/madnuttah/openssl-buildenv)
Full DNSSEC support, QUIC/HTTP3 via ngtcp2/nghttp3... So much fun!
cc @nlnetlabs 💚
https://github.com/madnuttah/unbound-docker
https://hub.docker.com/r/madnuttah/unbound
#DNS #DNSSEC #DoT #DoH #QUIC #HTTP3 #Unbound #FOSS #SelfHosting #Homelab #Privacy
-
roto - The strongly-typed, compiled #embedded scripting language for #Rust, used by Rotonda
Introducing #Roto: A Compiled Scripting Language for Rust (May 2025):
https://blog.nlnetlabs.nl/introducing-roto-a-compiled-scripting-language-for-rust/Repo:
https://github.com/NLnetLabs/rotoThis looks awesome! I love strongly typed scripting languages! :awesome:
And the fact that it integrates with Rust so seamlessly... ✨
#RustLang #ProgrammingLanguage #Scripting #ScriptingLanguage
-
🚀 Behold! Another "innovative" #scripting #language swoops in to save #Rust from... itself? #Roto promises to be both simple and fast, which is programmer-speak for "good luck debugging!" 🎉🔧 Oh, and don't forget to subscribe to the #newsletter for more groundbreaking insights on filtering route announcements. 😂📬
https://blog.nlnetlabs.nl/introducing-roto-a-compiled-scripting-language-for-rust/ #innovative #programming #humor #HackerNews #ngated -
Roto: A Compiled Scripting Language for Rust
https://blog.nlnetlabs.nl/introducing-roto-a-compiled-scripting-language-for-rust/
#HackerNews #Roto #Rust #Scripting #Language #Compiled #Programming
-
And to finish off this release-packed Thursday, we're happy to offer the first Release Candidate of our #RPKI proxy RTRTR, version 0.3.2-rc1. This release adds #ASPA support to the JSON input and output, and more… https://github.com/NLnetLabs/rtrtr/releases/tag/v0.3.2-rc1
-
Routinator offered support for #RPKI Autonomous System Provider Authorization (ASPA) as an experimental feature for a number of years already. Standardization has now progressed far enough in the #IETF that we feel comfortable making #ASPA a core feature in Routinator 0.14.1. #OpenSource #OpenStandards https://github.com/NLnetLabs/routinator/releases/tag/v0.14.1
-
Good morning, Yokohama! Second day of #IETF116, still at the hackathon.
Improving #DNS #privacy with #aDoT (authoritative DNS over TLS, encryption to the authoritative name server), work mostly done by @nlnetlabshttps://www.ietf.org/how/runningcode/hackathons/116-hackathon/
-
Good morning, Yokohama! Second day of #IETF116, still at the hackathon.
Improving #DNS #privacy with #aDoT (authoritative DNS over TLS, encryption to the authoritative name server), work mostly done by @nlnetlabshttps://www.ietf.org/how/runningcode/hackathons/116-hackathon/
-
Good morning, Yokohama! Second day of #IETF116, still at the hackathon.
Improving #DNS #privacy with #aDoT (authoritative DNS over TLS, encryption to the authoritative name server), work mostly done by @nlnetlabshttps://www.ietf.org/how/runningcode/hackathons/116-hackathon/
-
Good morning, Yokohama! Second day of #IETF116, still at the hackathon.
Improving #DNS #privacy with #aDoT (authoritative DNS over TLS, encryption to the authoritative name server), work mostly done by @nlnetlabshttps://www.ietf.org/how/runningcode/hackathons/116-hackathon/
-
Good morning, Yokohama! Second day of #IETF116, still at the hackathon.
Improving #DNS #privacy with #aDoT (authoritative DNS over TLS, encryption to the authoritative name server), work mostly done by @nlnetlabshttps://www.ietf.org/how/runningcode/hackathons/116-hackathon/
-
Krill 0.16.0 is now available.
This release of our #RPKI Certification Authority reverts back to downloading the RISwhois data and processing it locally for analysing ROAs rather than using an external API.
The Krill daemon will now also listen on a Unix socket which allows it to use the name of the local user for authentication, making it unnecessary to specify the authentication token when using krillc locally.
https://community.nlnetlabs.nl/t/krill-0-16-0-fruher-war-mehr-lametta-released/73
-
We just published 0.16.0-RC1 of our #RPKI Certification Authority Krill, which reverts back to downloading the RISwhois data and processing it locally for analysing ROAs rather than using an external API.
In addition, there are quite a few fixes and improvements. For instance, there now is a man page for the config file, so you can now do man krill.conf for information about the config.
https://community.nlnetlabs.nl/t/krill-0-16-0-rc1-released/73/1
-
@drscriptt @jhaas I remember launching #RPKI in 2011. It took years of publishing ROAs, learning from mistakes and fixing bad quality ROAs before the operator community got to the point where they felt comfortable dropping invalid routes.
ASPA will be the same, although perhaps a bit quicker because of the huge installed base of (ASPA capable) validators: https://rov-measurements.nlnetlabs.net/stats/
-
We updated DNS-over-QUIC in Unbound #DNS resolver to use the latest release of ngtcp2, version 1.13.0. It now also supports OpenSSL 3.5.0.
In addition, this change now calls the new performance increase init for the ngtcp2 crypto library. #DoQ #OpenSource
-
We updated DNS-over-QUIC in Unbound #DNS resolver to use the latest release of ngtcp2, version 1.13.0. It now also supports OpenSSL 3.5.0.
In addition, this change now calls the new performance increase init for the ngtcp2 crypto library. #DoQ #OpenSource
-
We updated DNS-over-QUIC in Unbound #DNS resolver to use the latest release of ngtcp2, version 1.13.0. It now also supports OpenSSL 3.5.0.
In addition, this change now calls the new performance increase init for the ngtcp2 crypto library. #DoQ #OpenSource
-
We updated DNS-over-QUIC in Unbound #DNS resolver to use the latest release of ngtcp2, version 1.13.0. It now also supports OpenSSL 3.5.0.
In addition, this change now calls the new performance increase init for the ngtcp2 crypto library. #DoQ #OpenSource
-
We updated DNS-over-QUIC in Unbound #DNS resolver to use the latest release of ngtcp2, version 1.13.0. It now also supports OpenSSL 3.5.0.
In addition, this change now calls the new performance increase init for the ngtcp2 crypto library. #DoQ #OpenSource
