[dns-operations] Looping wildcard CNAMEs can be an obstacle for DANE, (googledomains.com-hosted example)

Florian Weimer fweimer at redhat.com
Mon May 7 15:43:27 UTC 2018

On 05/07/2018 04:41 PM, John Levine wrote:
> It has the same odd broken CNAME:
> *.christianfreear.com.	3596	IN	CNAME	\@.christianfreear.com.
> Seems to me a more interesting question is why people are putting that
> particular broken CNAME into their DNS.

It's probably the result of a DNS zone file parser which does not 
implement the RFC 1035 syntax (where @ denotes “the current origin”).


More information about the dns-operations mailing list