Author Topic: Who is checking DANE through the DNSSEC/TLSA Validator in fx or chrome?  (Read 1822 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33926
  • malware fighter
See: https://www.dnssec-validator.cz/
https://addons.mozilla.org/pl/firefox/addon/dnssec-validator/
TLS lately has come under fire, the encryption layer between browser (device) and websites.
A solution against cybercriminal actions is formed by DANE based on DNSSEC, fundamentally new and making the Internet a more secure place to be. The website side is often OK (1.7 million sites secured), Big cablers and ISP providers are still rolling this out in places and often lack behind e.g. in European countries.
Check your situation through the DNSSEC/TLSA Validator add-on/extension.
Online you can check domains here: http://dnssec-debugger.verisignlabs.com/
Move your mouse over any symbols for remediation hints.

polonus
« Last Edit: September 08, 2014, 12:43:55 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33926
  • malware fighter
Re: Who is checking DANE through the DNSSEC/TLSA Validator in fx or chrome?
« Reply #1 on: September 08, 2014, 12:57:10 PM »
A second op scanner can be found here, example : http://dnsviz.net/d/forum.avast.com/dnssec/
RRset status insecure.

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!