[dns-operations] Statement: Issues using BIND 9.4 & 9.5 with DLV and certain DNSSEC-signed zones
Eric Osterweil
eoster at CS.UCLA.EDU
Sat Apr 25 23:10:12 UTC 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Apr 25, 2009, at 1:50 PM, Florian Weimer wrote:
> * Eric Osterweil:
>
>> We track 35 DNSSEC gov zones at SecSpider. We also track the gov
>> island as consisting of 9 "production" zones:
>> http://secspider.cs.ucla.edu/islands.html
>
> So there are already 4 (soon 5) signed delegations in .gov you know
> about? (pmf.gov is the secure zone I could find.)
We actually track (it looks like) about 18 signed delegations. We do
a course estimation step of trying to discern testing from production
zones. It looks like it guesses wrong for a few (not surprising), but
as of the last run we seem to see 18 delegations.
Eric
>
>
> In this case, it makes some sense to keep to the May 1st switchover
> date. I'll see what I can do for Debian.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (Darwin)
iEYEARECAAYFAknzmFQACgkQK/tq6CJjZQKhmwCffAE+Y+7q3N+sIuyrOm8bwNgD
MaAAn2nMc30a535BORneOJwuktfbwMiS
=Fkf5
-----END PGP SIGNATURE-----
More information about the dns-operations
mailing list