[ldns-users] drill doesn't validate NSEC3 nxdomain?
W.C.A. Wijngaards
wouter at NLnetLabs.nl
Tue Sep 14 10:41:43 UTC 2010
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Hugo,
On 08/31/2010 09:41 PM, Hugo Salgado wrote:
> I want to use "drill -k" to validate correctness of a nsec3
> chain signature, for a nxdomain response.
> But when I try to validate non-existence:
> % drill -D -k ORG.KSK @a0.org.afilias-nst.info. ds aaaaietf.org.
> [ ... ]
> ; Bad data; RR for name and type not found or failed to verify, and
> denial of existence failed.
> I'm using drill version 1.6.6 (ldns version 1.6.6).
Fixed in svn trunk r3341.
Best regards,
Wouter
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkyPUWcACgkQkDLqNwOhpPgClgCgrypMiOXWvHLRf6BMk6EAZqXt
E5QAoLBOYe5PQ+VTVmQaBc8L8grbXLpX
=5SHC
-----END PGP SIGNATURE-----
More information about the ldns-users
mailing list