Welcome to the PowerDNS Blog
Welcome!
Welcome to the new dedicated PowerDNS blog! Previously we had various personal blogs that mentioned PowerDNS a lot, but not everything is under one roof. Most relevant posts have been copied to this site already....
A PowerDNS… WOK?!
From a letter, where you should know that ‘Mok’ is Dutch for ‘Mug’: Dear PomerDNS management, Recently me ordered, via a mebform or your mebsite, a so called PomerDNS Mok. but something ment terribly mrong since ...
Adding new DNS record types to PowerDNS software
Our friends from NLNetLabs recently described how to add new record types to NSD, which I think is a great idea. Especially if this enables the community to add their favorite record types for us! Here are the fu...
I’m a C++ dinosaur, but I’m OK
So here’s a nice challenge. Let’s say you have a list of member email addresses which you get from your account list. But you also have a list of email addresses that you have of your customers, addresses that yo...
On binding datagram (UDP) sockets to the ANY addresses
This story goes back a long time. For around 10 years now, people have been requesting that PowerDNS learn how to automatically listen on all available IP addresses. And for slightly less than that time, we’ve be...
A few quick notes on making an application FULLY IPv6 compliant
Over the past decade, PowerDNS has become ever more IPv6 compliant, and I think that since a year or so, we fixed every last issue. So why did it take so long? Just creating an AF_INET6 socket and binding it shou...
Random points of contention
I’m working on some high performance code which needs to scale to many, many CPUs. Against better judgement, I decided to use threads again, but to steer clear from anything that needs locking. I’ve previously fo...
Easiest DNSSEC ever when running PowerDNS in BIND mode
Without further comment, except to note that this is really all there is to this. Signatures will autorotate, ‘pdnssec’ allows for complete key management. No cronjobs or further configuration. # apt-get install ...
On SRP – some implementation notes and a critical review
Some time ago, Dan Kaminsky mentioned the Secure Remote Password protocol (SRP) on Twitter. As I find certificates to be cumbersome, I’m always interested in solutions to setup trusted communications without them...