Carlos M. Martinez-Cagnazzo

Below you can find a clear configuration snippets to quicklyimplement logging configuration for BIND9. Logging configuration in BIND is, to me, quite obscure and unnecesarily complicated. This sample can be cut & pasted in named.conf (or named.conf.options in Debian / Ubuntu variants). The basis for this configuration was in [http://www.zytrax.com/books/dns/ch7/logging.html]

RNDC is an extremely useful utility bundled with BIND that allows controlling the DNS server in a fine-grained way. So instead of reloading the whole server to add a single record, you can issue a "rndc reload myzone.com" command and only that zone will be loaded without restarting the server.

1. Generate a cryptographic key

First we'll generate a crypto key that will be used to access the control channel of BIND:

dnssec-keygen -a HMAC-MD5 -b256 \

Hay muchas situaciones donde manejar actualizaciones dinámicas, y en lo posible automáticas, de zonas de DNS es deseable. Por ejemplo en el caso de redes donde hay gran cantidad de estaciones que toman sus direcciones de DHCP o mediante otros mecanismos dinámicos (SLAAC en IPv6 por ejemplo).

Chris Grundemann's blog (it's a post from 2009 but I just found it) has interesting take on how to manage IPv6 space and how current allocation strategies could lead to another run-out scenario just like the one we all saw happening yesterday with IANA's IPv4 pool running out.

We at LACNIC have released our first production version of our Resource Public Key Infrastructure (RPKI). Below is the official announcement made by LACNIC.

 A very useful post detailing two methods on how to clone a VirtualBox VDI disk image.

You can find it here: http://www.modhul.com/2009/06/17/how-to-clone-or-copy-a-virtualbox-virtual-disk/

Yes, contrary to what all that has been said on the Internet, the Blogs and the Mailing Lists during the past few days, ICANN Does Not Take Down Websites.

One of my first projects at LACNIC is to define a set of IPv6 adoption metrics. There are at least three different possible points of view here. One could look at this from the point of view of criticial infrastructure (routers, DNS servers), services (web sites, mail servers) or the end users.

Esta es la continuación de una publicación en Facebook que quise hacer, pero me encontre con que hay un tamaño máximo.

Elecciones municipales: un bochorno. 70% de los montevideanos no voto alcaldes. Recupero algo de fe en la gente

I have created disk images for forensic purposes (artifact analysis and such). The questions is: given a "dd" image created from the whole, raw device, how do I mount individual partitions?

Let's say that the device I want to analyze resides in /dev/sdc, and that I have some large storage mounted under /mnt/largedisk and that I have cread the forensic image using the following command: