[dns-operations] Strange behavior of google public resolver

Jim Reid jim at rfc1035.com
Thu Apr 18 10:07:14 UTC 2019

> On 18 Apr 2019, at 10:46, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:
> Of course, it would be better to move away from DSA, but it shouldn't
> make a SERVFAIL, just a lack of validation

? If DSA signatures can't be validated, SERVFAIL is the correct response.

More information about the dns-operations mailing list