Babak Farrokhi :dns:

@jtk A semi-related research to this subject: https://ripe90.ripe.net/archives/video/1596/

A blue aircraft preparing to board passengers

Returning home (🇸🇪 → 🇳🇱) after DNS-OARC 45 and the Netnod Tech Meeting with two more conference badges and t-shirts, wonderful memories, and stronger friendships.

Grateful for everyone’s friendship, knowledge sharing, and openness. Until next time!
#oarc45 #lovedns

DNSDiag 2.8.1 is now available with DNS Cookie support, EDNS Client Subnet testing, automatic Extended DNS Error display, and DNS over QUIC/HTTP3 tracing.
This was also the perfect opportunity to fix the known bugs and make some quality of life improvements […]

@jtk interesting choice of name. I wonder why such confusing names are chosen.

DNS-OARC (@dnsoarc@mastodns.net) Attached: 1 image Join the conversation at #OARC45! Table Topics will run during the last 30 minutes of lunch (13:45 – 14:15 CEST) on both workshop days. Small-group discussions—covering DNS operations, security, and community topics—will be clearly marked with table signs. Find a topic that interests you and pull up a chair! More information can be found on our event site https://bit.ly/4nG1bCW #LoveDNS #TableTopics ^RP

Heading to OARC in a few weeks? Join one of the table topics! I’ll be moderating an ADoT/ADoQ Adoption discussion among several other interesting choices.
https://mastodns.net/@dnsoarc/115264999087793934
#DNS #lovedns

Running some experiments on public DNS resolvers to see how they handle ECS. Surprise: resolvers aren’t all created equal!
I will share my findings soon.

Release DNSDiag 2.7.0 · farrokhi/dnsdiag Changelog for DNSDiag 2.7.0 New Features DNS over HTTP/3 (DoH3) Support: Added support for RFC 9114 DNS over HTTP3 protocol using -3 or --doh3 option in dnsping Improved Error Handling: Enhanced e...

🚀 DNSDiag 2.7.0 is out!

✅ Support for DNS over HTTP/3 (DoH3)
✅ Improved support for DoQ
✅ Improved DoQ & DoH3 error handling
✅ Cleaner display of RTT, flags & EDE info

🔗 Release notes:
https://github.com/farrokhi/dnsdiag/releases/tag/v2.7.0

OARC 45 OARC 45 will be a hybrid in-person and online workshop. The workshop will be held in Stockholm, Sweden DNS-OARC is a non-profit, membership organization that seeks to improve the security, stability, and understanding of the Internet's DNS infrastructure. Part of these aims are achieved through workshops. DNS-OARC Workshops are open to OARC members and to all other parties interested in DNS operations and research.This year, OARC 45 is part of a broader DNS Week—a full calendar of events...

DNS-OARC 45 in Stockholm is just a few weeks away! 🇸🇪

Looking forward to seeing many of you there — let’s catch up and hang out!

https://indico.dns-oarc.net/event/55/

#DNS #LoveDNS #oarc45

What is the idea behind research papers not having a date stamp? Is it because publication date is irrelevant? Asking because I check for the date very often and it is usually not easy to find it anywhere.

Alibaba Cloud reveals uptime and efficiency secrets : eBPF, shared SmartNICs, and smart scheduling have improved reliability and cut costs

Alibaba Cloud reveals some details on how they use eBPF, shared SmartNICs, and smart scheduling to improved reliability and cut costs
https://www.theregister.com/2025/09/02/alibaba_cloud_reveals_its_uptime/

GitHub CEO delivers stark message to developers: Embrace AI or get out. Thomas Dohmke wrote that humans are often resistant to change. He said that's okay, but these people should probably find another profession.

GitHub CEO says "Embrace AI or leave the profession", just a week before he left the profession?
https://www.businessinsider.com/github-ceo-developers-embrace-ai-or-get-out-2025-8?international=true&r=US&IR=T

Internet was built to be decentralized. Instead, we handed CDNs, DNS, Email, Search, Package Management, and Code Repos to a few giants. And turns out most people are fine with it. This isn’t an accident. It’s supply and demand.

https://me.dm/@anildash/115011879301970616

An screenshot from a conversation with ChatGPT earlier today that shows ChatGPT itself has no idea about GPT-5 being released a day before.

Asked ChatGPT about GPT-5 earlier today, and this is what I've got:

One person almost single handedly is trying to make internet a better place.
https://mastodon.social/@mjtsai/114983397834787020

An screenshot from broadcom support website that reads: Moving forward, updates will need to be manually downloaded from the Broadcom Support Portal. Once the appropriate product update is downloaded, it can be manually installed.

According to a broadcom support article (https://knowledge.broadcom.com/external/article?articleNumber=395172), this is how the "automatic" update works from now on:

If you were wondering why VMware Workstation/Fusion stopped automatic updates, you have to jump through many hoops to get the update (logging in to the portal, clicking on many links, accepting nonsense TOC, swearing, clicking on more things, etc.) - I have an answer for you, and the answer is […]

@DNSresolver softwareupdate.broadcom.com

We've Issued Our First IP Address Certificate Since Let’s Encrypt started issuing certificates in 2015, people have repeatedly requested the ability to get certificates for IP addresses, an option that only a few certificate authorities have offered. Until now, they’ve had to look elsewhere, because we haven’t provided that feature. Today, we’ve issued our first certificate for an IP address, as we announced we would in January. As with other new certificate features on our engineering roadmap, we’ll now start gradually rolling out this option to more and more of our subscribers.

Let’s Encrypt to issue short lived certificates for IP addresses later this year:
https://letsencrypt.org/2025/07/01/issuing-our-first-ip-address-certificate/

Just registered for IETF 123 in Madrid. I will be participating remotely this time.

Also this is why I decided to drop Mailmate: https://freron.com/2025/why-did-mailmate-switch-to-free-mode-today/

I decided to give `aerc` (https://aerc-mail.org) another try (as my secondary email client). It is not mature, especially in the Threading and custom key-binding department, but it gets the job done. And it feels fresh. I am going to give it a try for the next few weeks or months to see if it's […]

I use mu4e/emacs (https://www.djcbsoftware.nl/code/mu/mu4e.html) as my primary email client and Mailmate as my secondary, when I need a GUI client. However, I recently decided to drop Mailmate. It's a fantastic software, and I don't mind paying for the recently introduced subscription model […]

I stopped using em-dash a while back when I realized it makes my writings look like LLM generated.
https://godforsaken.website/@hazel/114771774866635191

@jtk @dataplane yes to both! And thank you for doing the good work. Especially looking forward to seeing the Weekend Reads again.

Seems like ChatGPU is down. So people will write high quality code today.

@olaf @bortzmeyer Fantastic. Thanks for sharing!

Pocket was the last reason I needed to drop Firefox. I never liked the forceful nature of its presence in Firefox. Mozilla re-enabled it with every single update, like they did with their Telemetry.
Well, they got rid of it anyway, but it will not help with building trust with their remaining […]

This is why Engineers should not be Designers too. Let’s keep these roles separate.

https://vmst.io/@jalefkowit/114597177875431505

People are usually very surprised when I tell them how much of the world runs on Linux kernel, cURL and tmux.

Encrypted DNS (well, DoT) as part of RHEL and Fedora. They chose #Unbound as the layer between stub and upstream resolver to encrypt DNS traffic, including very early stages of boot as well as initial installation.

https://lwn.net/Articles/1021357/