[62823] in North American Network Operators' Group
RE: Verisign Responds
daemon@ATHENA.MIT.EDU (Jeroen Massar)
Tue Sep 23 11:07:33 2003
From: "Jeroen Massar" <jeroen@unfix.org>
To: "'Paul Vixie'" <paul@vix.com>
Cc: <nanog@merit.edu>
Date: Tue, 23 Sep 2003 17:03:30 +0200
In-reply-to: <20030923143444.7D0A4139DF@sa.vix.com>
Errors-To: owner-nanog-outgoing@merit.edu
-----BEGIN PGP SIGNED MESSAGE-----
Paul Vixie wrote:
> > We recommend that any and all TLDs which use wildcards in a manner
> > inconsistent with this guideline remove such wildcards at the =
earliest
> > opportunity."
> >=20
> > What else does the IETF need to do here?
>=20
> issue an rfc. iab is not a representative body, and their opinions
> are not "refereed."
I wonder btw why Verisign didn't catch the "typo's" in their
own domains if they think it is that important:
8<---------------------
; <<>> DiG 9.2.3rc2 <<>> wwww.verisign.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31401
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;wwww.verisign.com. IN A
;; AUTHORITY SECTION:
verisign.com. 3600 IN SOA localhost.verisign.net. =
vshostmaster.verisign.com. 2003091501 10800 3600 604800 3600
;; Query time: 165 msec
;; SERVER: ::1#53(::1)
;; WHEN: Tue Sep 23 16:51:56 2003
;; MSG SIZE rcvd: 106
- ----------------------->8
no mistyping wwww there :)
BTW, that SOA record doesn't exist...
8<---------------------
; <<>> DiG 9.2.3rc2 <<>> localhost.verisign.net.
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52583
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;localhost.verisign.net. IN A
;; AUTHORITY SECTION:
verisign.net. 3570 IN SOA =
bay-w1-inf5.verisign.net. vshostmaster.verisign.com. 2003091501 10800 =
3600 604800 3600
;; Query time: 32 msec
;; SERVER: ::1#53(::1)
;; WHEN: Tue Sep 23 16:55:48 2003
;; MSG SIZE rcvd: 113
- ----------------------->8
Hmmm, suddenly another SOA on the same zone, this SOA does exist though.
Odd DNS software they are running over there :)
And apparently they can return NXDOMAINS after all.
Greets,
Jeroen
-----BEGIN PGP SIGNATURE-----
Version: Unfix PGP for Outlook Alpha 13 Int.
Comment: Jeroen Massar / jeroen@unfix.org / http://unfix.org/~jeroen/
iQA/AwUBP3BgwSmqKFIzPnwjEQK18wCfc95MR1wwV6vxDYtjtRLiuUuOLQkAoLzL
+ksSp4pgzPqouqxTgDIn1VTd
=3DDNLO
-----END PGP SIGNATURE-----
