Threat Level: green Handler on Duty: Rick Wanner

SANS ISC: SANS Daily Network Security Podcast (Stormcast) for Monday, April 2nd 2018 - SANS Internet Storm Center SANS Daily Network Security Podcast (Stormcast) for Monday, April 2nd 2018


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

MSFT Surprise Patch for Total #Meltdown; #APFS Still Logs Some Passwords; #Cloudflare Announces DNS

SANS Daily Network Security Podcast (Stormcast) for Monday, April 2nd 2018
00:00

My Next Class

… more classes

Discussion

You mentioned Quad9 in this podcast when talking about the Cloud Flare DNS service announcement. Something I've come across with Quad9 but not with other DNS services like 1.1.1.1 or Google's 8.8.8.8 is that Quad9 appears to be blocking some non-traditional URLs. I haven't seen any issues with the normal .coms or .nets, but have seen a lot of issues specifically with .bank. I have been working with Quad9s tech support on this but was curious if anyone else had seen the same thing with non .com URLS.
Posted by KRihner on Mon Apr 09 2018, 20:18
interesting. I just tested it, and it looks fine for a couple of sample records I looked up:

$ dig +short register.bank @9.9.9.9
64.41.83.142

$ dig +short sport NS @9.9.9.9
anycast24.irondns.net.
anycast9.irondns.net.
anycast10.irondns.net.
anycast23.irondns.net.

Maybe they fixed the problem, or it only affects specific domains.
Posted by Johannes on Mon Apr 09 2018, 22:08
I looked again today. I was using nslookup in Windows CMD and setting the server to 9.9.9.9 which makes dns.quad9.net my DNS server. Yesterday afternoon when I posted the comment I was getting an DNS timeouts. Checked again just now and it is resolving the .bank URLs. I haven't heard anything else back from Quad9 support, but I'm guessing they fixed the problem.
Posted by KRihner on Tue Apr 10 2018, 18:58

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Defending Web Applications Security EssentialsDenverOct 24th - Oct 29th 2018
Intrusion Detection In-DepthWashingtonDec 13th - Dec 18th 2018
Defending Web Applications Security EssentialsMunichMar 18th - Mar 23rd 2019
Intrusion Detection In-DepthMadridMar 25th - Mar 30th 2019
Defending Web Applications Security EssentialsSan DiegoMay 9th - May 14th 2019
Intrusion Detection In-DepthSan AntonioMay 28th - Jun 2nd 2019