Starting now, we’re protecting against DNS names used by malware used to target european banks. It’s called CARBANAK APT. Kaspersky have a white paper on it: CARBANAK APT – THE GREAT BANK ROBBERY
TTIP i CETA – co to oznacza i nasz głos przeciw
Unia Europejska niebawem zamierza podpisać dwie umowy handlowe o bardzo rozległym charakterze. Jedną z Kanadą (CETA = Comprehensive Economic and Trade Agreement) a drugą z USA (TTIP = Transatlantic Trade and Investment Partnership). Oficjalna linia jest taka, że stworzą one miejsca pracy i zwiększą wzrost gospodarczy. Problem tkwi w tym, że prawdziwymi beneficjenttami tych umów … Continued
Everything is going up!
Happy to report that everything is going up :-) Usage is going up – we’re pushing now around 7 GB/day RAM went up with the recent upgrade Cache Hit Ratio went up from around 42% to 78% Sadly, running cost went up because of traffic used (1) and costlier VM option (2) Roughly: Double the RAM … Continued
Planned Service Outage on 22-MAR-2015 / RAM Upgrade (completed)
UPDATE (22-OCT-2014 01:42 CET, 00:42 UTC): The maintenance at the hosting company is over. Amazingly this did nota ffect us in any way. The RAM upgrade has been done 10 minutes before the outageIn case of issues write to support@dnscrypt.pl or tweet at @dnscryptpl Planned Outage Our hosting provider (e24cloud.com) notified us that they will be doing maintenance which … Continued
Upgraded dnscrypt-wrapper to 0.1.15
Just 2 hours ago Yecheng Fu released dnscrypt-wrapper 0.1.15. It brings a lot of fixes and performance improvements. I upgraded at 17:08 CET. I see it’s running fine, but contact me if you encounter any issues. I suspect silence as usual.
Unbound 1.5.0 released with contributions from DNSCrypt Poland
As you may know, I’m running Unbound as our underlying resolving DNS server and that makes it my vested interest to contribute to that project. With the latest version, unbound 1.5.0 brings a ton of changes, including our own patch to “add msg, rrset, infra and key cache sizes to stats command”. It adds cache size statistics which … Continued
Planned Service Outage for Certificate Regeneration on 21-OCT-2014 (completed)
UPDATE (21-OCT-2014 04:06 CEST, 02:06 UTC): The certificate has now been renewed and services restarted in less than 1 minute. Restart your clients or let them wait up to 1 hour to pick up the change. In case of issues write to support@dnscrypt.pl or tweet at @dnscryptpl Current DNSCrypt Poland certificate expires on 22-OCT-2014. I … Continued
Unplanned outage 17-OCT-2014
We’ve had an unplanned 4,5h outage from 9 am to 13.30 pm CEST due to a funding issue. Sorry for that, it’s back up! [twitter message] Again, I encourage everyone to follow on @dnscryptpl on twitter to hear about service announcements and also post issues informally.
How to regenerate a dnscrypt-wrapper certificate
If you are running DNSCrypt infrastructure and using Yecheng Fu’s dnscrypt-wrapper then this means that at some point you generated a certificate, which is valid for 365 days. If the expiry date is coming soon, you need to regenerate it. In order to do it as easy for the users you need to: retain the provider key pair is … Continued
Shellshock
In the webserver logs I’ve only seen a few counts of shellshock attempts, and they mostly were just the pings. DNSCrypt Poland servers have been patched yesterday.