Briefly about DNSSEC - what it is, why you need it and how to enable it
With the development of technology, the methods of interception of information by intruders are also developing. Not so long ago, the problem of replacing the content of sites began to appear en masse. To address this vulnerability, a new domain protection technology, DNSSEC, was invented.
What is DNSSEC ? It is a set of extensions to the IETF DNS protocol, a domain zone signing mechanism that ensures that the user receives data from the original source. After all, the fact that the user types the address in the browser line does not guarantee that he will receive data from this particular domain. Since, for example, you can use the host file and assign a completely different ip-address to this domain - as a result of which a completely different content will be displayed, unlike the original. But DNS spoofing does not necessarily occur on the side of the user's PC; it is also possible on the side of third-party servers and data transmission channels.
Why DNSSEC ? The answer is simple, this technology will not allow forging requests to the domain and spoofing data. It ensures that the user, by typing the address in the browser, receives data from the true owner of the domain, and not from any third party.
How do I enable DNSSEC ? This option is usually provided by the domain name registrar and is likely to come with a fee. The cost is unlikely to be high, so it's worth installing DNSSEC for all domains. The registrar will most likely enable this option without delay and configure whatever is required.
Thus, we have briefly covered DNSSEC technology. But this information will be enough to understand that this technology is simply necessary for the security of any site and must be enabled as early as possible.
- 09.11.23IT / Database Errors when migrating from MySQL 5.6 to 5.7 and how to fix them - database dump import failed with an error or INSERT does not work. Disabling STRICT_TRANS_TABLES strict mode or using IGNORE
- 09.07.22IT / Misc Convert office files DOC, DOCX, DOCM, RTF to DOCX, DOCM, DOC, RTF, PDF, HTML, XML, TXT formats without loss and markup changes
- 07.07.22IT / Safety How to protect PHP, JS, HTML, CSS source code - obfuscation, minification, compression and encryption
- 06.07.22IT / Safety Connection not secure, problem with Lets Encrypt - how to fix expired 09/30/2021 DST Root CA X3, remove it manually and install ISRG Root X1. Example on MS Windows 7
- 08.07.21IT / Misc How to make a free translation for a website without an API, translate documents in Google Translate