[dns-operations] Is it illegal to query the .berlin TLD servers?

Paul Hoffman paul.hoffman at vpnc.org
Sat Jan 11 16:49:15 UTC 2014

From an operations point of view, this TXT is problematic in that it shows that the zone operator is willing to break its agreement with ICANN without notice. They agreed to only put the following in the TLD zone:
	• Apex SOA record.
	• Apex NS records and in-bailiwick glue for the TLD’s DNS servers.
	• NS records and in-bailiwick glue for DNS servers of registered names in the TLD.
	• DS records for registered names in the TLD.
	• Records associated with signing the TLD zone (i.e., RRSIG, DNSKEY, NSEC, and NSEC3).
They broke that agreement as soon as they could. Which other agreements with ICANN are they willing to break? Or, if this really is a simple mistake, which other simple mistakes are they willing to make until ICANN tells them not to?

--Paul Hoffman

More information about the dns-operations mailing list