Backlinks are bad

Backlinks are bad because they do not provide any additional information. Rather they take away in cognitive performance because there is another link you might follow. Rather links should come from a natural flow, because the note builds on a previous note, for example. Or to include an idea from another note.

I’ve come to believe that linking keywords within the idea to other notes is a better approach than a list at the bottom linking back and forth.

[]

TXTing 101: Finding Security Issues in the Long Tail of DNS TXT Records

The DNS TXT resource record is the one that without doubt provide users with the most flexibility of content, as it is a largely unstructured. Although it might be the ideal basis for storing any form of text-based information, it also poses a security threat, as TXT records can also be used for malicious and unintended practices. Yet, we reckon that TXT records are often overlooked in security research. In this paper, we present the first structured study of the uses of TXT records, with a specific focus on security implications. We are able to classify over 99.54% of all TXT records in our dataset, finding security issues including accidentally published private keys and exploit delivery attempts. We also report our lessons learned while dealing with a large-scale, systematic analysis of TXT records.

[]

A Case of Identity: Detection of Suspicious IDN Homograph Domains Using Active DNS Measurements

The possibility to include Unicode characters in domain names allows users to deal with domains in their regional languages. This is done by introducing Internationalized Domain Names (IDN). However, the visual similarity between different Unicode characters - called homoglyphs - is a potential security threat, as visually similar domain names are often used in phishing attacks. Timely detection of suspicious homograph domain names is an important step towards preventing sophisticated attacks, since this can prevent unaware users to access those homograph domains that actually carry malicious content. We therefore propose a structured approach to identify suspicious homograph domain names based not on use, but on characteristics of the domain name itself and its associated DNS records. To achieve this, we leverage the OpenINTEL active DNS measurement platform, which performs a daily snapshot of more than 65% of the DNS namespace. In this paper, we first extend the existing Unicode homoglyph tables (confusion tables). This allows us to detect on average 2.97 times homograph domains compared to existing tables. Our proactive detection of suspicious IDN homograph domains provides an early alert that would help both domain owners as well as security researchers in preventing IDN homograph abuse.

[]

How to Link Notes

Notes should be linked, as is the basis of the Zettelkasten idea. However, to effectively link notes try the following:

  1. Link to a more general idea.
  2. Link to a more specific idea.
  3. Link to a related topic.

See “tk notes” for when you don’t have note ready to link to.

Above is how we used to think about linking notes together. In the meantime we have learned that there is some truth to this manner, but having these as a list at the bottom of a note doesn’t work.

[]