[165419] in North American Network Operators' Group
Re: Is the FBI's DNSSEC broken?
daemon@ATHENA.MIT.EDU (John Levine)
Wed Sep 4 05:05:14 2013
Date: 4 Sep 2013 09:04:41 -0000
From: "John Levine" <johnl@iecc.com>
To: nanog@nanog.org
In-Reply-To: <52265AA4.6000404@free.fr>
Cc: mh@xalto.net
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
In article <52265AA4.6000404@free.fr> you write:
>Le 03/09/2013 23:28, John Levine a écrit :
>>>> On Fri, Aug 30, 2013 at 10:27:36PM +0000, John Levine wrote:
>>>>> I don't claim to be a big DNSSEC expert, but this looks just plain
>>>>> wrong to me, and unbound agrees, turning it into a SERVFAIL.
>> I heard back, seems like I found someone at the FBI who was able to
>> explain the problem to Neustar (DNS software provider) who say they
>> will fix it.
>
>So, what was the problem then?
What we said it was, missing signatures on some NODATA results.
