[dns-operations] DNSSEC DANE testing
Paul Wouters
paul at cypherpunks.ca
Tue Jul 31 02:16:31 UTC 2012
On Mon, 30 Jul 2012, Vernon Schryver wrote:
> Is there something somewhere (preferably a browser) that can check
> (preferably use to make a TLS connection) TLSA records ?
> I've found various things that check various DNSSEC related records,
> but none that handle the TLSA records defined in the IESG approved
> Proposed Standard
An unfinished but working hacked os3sec/niccz firefox plugin, which
I only tested on Linux:
http://people.redhat.com/pwouters/mozilla-extval-0.7-2.fc16.noarch.rpm
(http://people.redhat.com/pwouters/mozilla-extval-0.7-2.fc16.src.rpm)
TLSA records are published for fedoraproject.org and nohats.ca.
Paul
More information about the dns-operations
mailing list