Categories
News

ICANN Reserves .internal TLD for Private Use

The Internet Corporation for Assigned Names and Numbers (ICANN) has officially reserved the .internal top-level domain (TLD) for private use at the DNS level. This decision aims to provide a standardized TLD for internal networks, similar to how certain IPv4 address blocks are reserved for private use.

Resolved (2024.07.29.06), the Board reserves .INTERNAL from delegation in the DNS root zone permanently to provide for its use in private-use applications. The Board recommends that efforts be undertaken to raise awareness of its reservation for this purpose through the organization’s technical outreach.

https://www.icann.org/en/board-activities-and-meetings/materials/approved-resolutions-special-meeting-of-the-icann-board-29-07-2024-en#section2.a (2024-08-19)

Key points

  1. The .internal TLD will never be delegated in the global DNS root, ensuring it can be safely used for internal networks without conflicts.
  2. This move addresses the issue of organizations creating ad hoc TLDs for private use, which could lead to confusion.
  3. Google’s VP and Chief Internet Evangelist, Vint Cerf, revealed that Google and many of its cloud customers have been using .internal for years.
  4. ICANN believes this reservation won’t introduce new security or stability issues, but its effectiveness in improving the current situation remains uncertain.

Network administrators now have a sanctioned alternative for internal DNS naming, potentially simplifying and standardizing private network configurations across the internet.

Categories
News

Azure Portal, the request is blocked

The following message greeted multiple people on August 9th, 2024 at 09:47 CEST. It recovered by opening the portal fresh in the tab. But after the recent incident with Cloudstrike and other incidents immediately, your mind goes wandering when you see a large central structure greeting you and your colleagues with an error message.

The request is blocked.

https://portal.azure.com/Error/UE_SessionExpired#view/Microsoft_Azure_Support/SupportRequestDetails.ReactView/id/*** (2024-08-09 09:47)

Categories
News

Mozilla new HTTP Observatory

The Mozilla Observatory is a well-known web tool that verifies your website’s security baseline. Achieving a high score is a good indicator of your website’s security awareness.

It’s also a highly visible and effective indicator for website visitors. Having a high score is, therefore, not only a good practice but also an advertisement for your competency.

Categories
Azure News

Azure outage on July 30th, 2024

At this moment I saw many services becoming unavailable and also portal.azure.com is no longer available. The status on azure.com shows issues with accessing the portal, but the effects seem to be broader than that. At Microsoft, this case is known by the Tracking ID: KTY1-HW8

https://azure.status.microsoft/en-us/status (2024-07-30 14:29) Tracking ID: KTY1-HW8

Disruptions started at 12:06 UTC or 14:06 CEST based on my monitoring.

https://web-performance.freshping.io/reports?check_id=*** (2024-07-30 15:11)

After the big outtage originated by cloudstrike on July 19th, 2024 we see right away the next big issue on July 30th, 2024. Having contencanly plans and desater processes becomes more and more important.

Categories
News

Freshping.io webhook issues July 2024

I am a free customer of Freshping service. Since yesterday evening July 9th, 2024, my integration with pushover.net using a webhook has stopped working, and I couldn’t find any way to fix it. My integration remains present, and the configuration appears to be correct. However, webhooks seem not to be sending out notifications. Due to the announced service change, I do not qualify for support anymore as a free user.

Categories
News

Azure updates feed broken, June 2024

Microsoft is currently undergoing maintenance and is not providing RSS feeds for Azure updates. The last regular updates was on June 3rd, 2024. For me, this is a major inconvenience.

Azure Updates website is undergoing maintenance. During this time, you may notice limited functionality affecting RSS feeds and search features. We apologize for any inconvenience this may cause. Thank you for your patience and understanding.

Critical updates and retirements will also be communicated via emails and service health alerts.

https://azure.microsoft.com/en-us/updates (2024-06-21)

The alternative fallback is here: https://techcommunity.microsoft.com/t5/azure-updates/bg-p/AzureUpdates

But this is no longer easily machine readable.

https://techcommunity.microsoft.com/t5/azure-updates/bg-p/AzureUpdates (2024-06-21)

This once more points out the importance of the service health alerts which should be monitored for every resource.

I still hope that this service limitation will end soon, but for now, I haven’t seen any plans for when the service will return to regular operation.

Categories
News Security

DDoS in Switzerland in June 2024

There is a high chance of a Distributed Denial of Service (DDoS) attack around and during the “Summit on Peace in Ukraine” conference at the Bürgenstock Switzerland on the upcoming weekend of June 15th and June 16th, 2024. Find a complete breakdown of technical details of what happened over the entire weekend in the article.

Attacks on Swiss web properties were seen during the World Economic Forum in January 2024, the visit of the Ukrainian President Wolodymyr Selenskyj to Switzerland in January 2024, and in June 2023 when the Ukrainian President Wolodymyr Selenskyj was speaking in front of the Swiss Parliament in the form of a remote conference.

Categories
News

Cloud Egress Costs & DDoS

I recently came across an article online that detailed how, following a DDoS attack, the invoice from the cloud provider skyrocketed. It is crucial to monitor how a volumetric attack can impact your costs, particularly in terms of egress traffic or the resources needed from engineers to combat it. Implementing automated solutions such as rate limiting and traffic signals is highly recommended for a more efficient response. Remember to consider the cloud egress prices when devising your strategy.

Please also take into account auto-scaling limits, alerts. Also cost alerts, and spending limits should be in place.

Categories
Azure News

Azure shared dashboard not found, February 2024

Today, February 19, 2024, at 07:30 CET, I discovered that my shared dashboards are no longer working on the Microsoft Azure Portal. This issue was observed across multiple tenants and subscriptions. I do not yet know the root cause, but I suspect that it is an incident on Azure’s side.

Dashboard not found

Dashboard ” no longer exists. It was previously published to resource group ‘dashboards’ in subscription ‘00000000-0000-0000-0000-000000000000’.

https://portal.azure.com/*** (2024-02-19 11:00 CET)
Categories
Azure News

Azure Incident on January 21, 2024

Azure was reporting an issue on their status page. I have found it to be impacting services.

https://azure.status.microsoft/en-us/status

The case was resolved. In 14 days (February 5th, 2024), we can expect a final report. The final report was posted.