[dns-operations] xn--l1acc TLD gone bad already

Chris Thompson cet1 at cam.ac.uk
Fri Sep 6 18:36:31 UTC 2013


On Aug 22 2013, I wrote:

>The TLD "xn--l1acc" (an IDN for Mongolia) which was only added to the root
>zone last weekend, signed and with a DS right from the outset, seems to
>have got into trouble already.
>
>It looks as if a KSK rollover from a key with id 29566 to one with id 38599
>has been applied without changing the DS RRset in the root zone.

The mismatched KSK and DS have not changed since then. For a TLD, this
seems to be taking an inordinately long time to sort out.

-- 
Chris Thompson               University of Cambridge Computing Service,
Email: cet1 at ucs.cam.ac.uk    New Museums Site, Cambridge CB2 3QH,
Phone: +44 1223 334715       United Kingdom.


More information about the dns-operations mailing list