Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Quick Links


Shells Virtual Desktop
BMail.ag - Secure Email Service
Server.net
CPLicense.net
VPS Server
Buy VPN
Vultr
VMs for AI
HostDare
HostDare
ReliableSite White-Label Dedicated Hosting for Resellers
InterServer VPS
BMail.ag - Secure Email Service
Best VPN
High-Performance Bare Metal Server Solutions
Karvl.com
Server Mania Cloud Hosting
DataWagon Hosting
AlphaVPS Hosting
Evoxt.com
Clouvider
VPS Hosting with NVMe
Residential IPs in the US & 4G Mobile Proxies in EU & US with Unlimited Bandwidth
ReliableSite White-Label Dedicated Hosting for Resellers
Rabisu - Hosting Solutions
Shells Virtual Desktop

Categories

In this Discussion

Home General
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

.de TLD offline due to DNSSEC

whynotlearnwhynotlearn Member
in General

https://dnssec-analyzer.verisignlabs.com/nic.de

Seems to be the case that all .de domains are offline (aside from some who are cached, but from my understanding seems to be the case that when the cache dries out, its gonna be all the domains)

Thanked by 5webcraft lukast__ rm_ tentor emgh

Comments

  • stable_geniusstable_genius Member

    This is terrible, I'll lose millions per minute because of this. Oh wait.. I don't have any .de domains.

    Phew... that was close. Thank God I did not buy any .de domains.

    Thanked by 5totally_not_banned Hayzee forest jendeuk Nekopara
  • NyrNyr Community Contributor, Veteran

    dupe

  • NotFoundExceptionNotFoundException Member

    @Nyr said:
    dupe

    Nope, your dupe is the dupe

    Thanked by 6stable_genius tentor whynotlearn beanman109 webcraft forest
  • NyrNyr Community Contributor, Veteran

    @NotFoundException said: Nope, your dupe is the dupe

    Indeed, should've read the time.

    Thanked by 2whynotlearn webcraft
  • zedzed Member

    proof that dnssec is bad.

  • brueggusbrueggus Member, IPv6 Advocate

    @zed said:
    proof that dnssec is bad.

    Thanked by 2tentor zejjnt
  • totally_not_bannedtotally_not_banned Member

    Well, i don't like dnssec either.

    Thanked by 1jsg
  • beanman109beanman109 Member, Host Rep, Megathread Squad

    i use dnssex for some domains but i still dont even know what it does

    Thanked by 2Void sillycat
  • totally_not_bannedtotally_not_banned Member

    @beanman109 said:
    i still dont even know what it does

    Pretty much this and it pisses me off.

    Thanked by 1beanman109
  • whynotlearnwhynotlearn Member

    @Nyr said:
    dupe

    Its actually the opposite but no worries I think :-D

  • zedzed Member
    edited May 6

    hey no worries cloudflare is on it https://www.cloudflarestatus.com/incidents/vjrk8c8w37lz

    can't wait for the blog

    https://ianix.com/pub/dnssec-outages.html

    "Terminology note: The coveted 1000-day DNSSEC outage is known as a kiloday."

  • jsgjsg Member, Resident Benchmarker

    I hate to say it, but Kudos to CF for

    CF said:
    Cloudflare has temporarily disabled DNSSEC validation for .de domains on 1.1.1.1 resolver (as per RFC 7646) in order to allow .DE names to continue to resolve.

    But of bloody course billions of domain tampering and other evil cases will come up now!!! * shriek

    The RFC mentioned indicates that at least some modicum of reason was left when going DNSSEC.

    My .de domain (the only one left since I made a hard turn away from denic) of course is not DNSSEC infested.

    Thanked by 1totally_not_banned
  • zedzed Member

    @jsg said:
    I hate to say it, but Kudos to CF for

    CF said:
    Cloudflare has temporarily disabled DNSSEC validation for .de domains on 1.1.1.1 resolver (as per RFC 7646) in order to allow .DE names to continue to resolve.

    But of bloody course billions of domain tampering and other evil cases will come up now!!! * shriek

    The RFC mentioned indicates that at least some modicum of reason was left when going DNSSEC.

    My .de domain (the only one left since I made a hard turn away from denic) of course is not DNSSEC infested.

    Purists will shriek about tampering etc for sure but imo this illustrates why dnssec is theater anyway. The #2(?) public resolver just flipped it off for reasons oh well.

    Thanked by 2jsg totally_not_banned
  • jsgjsg Member, Resident Benchmarker

    @zed said:

    @jsg said:
    I hate to say it, but Kudos to CF for

    CF said:
    Cloudflare has temporarily disabled DNSSEC validation for .de domains on 1.1.1.1 resolver (as per RFC 7646) in order to allow .DE names to continue to resolve.

    But of bloody course billions of domain tampering and other evil cases will come up now!!! * shriek

    The RFC mentioned indicates that at least some modicum of reason was left when going DNSSEC.

    My .de domain (the only one left since I made a hard turn away from denic) of course is not DNSSEC infested.

    Purists will shriek about tampering etc for sure but imo this illustrates why dnssec is theater anyway. The #2(?) public resolver just flipped it off for reasons oh well.

    Guess why I didn't join the DNSSAK cult ...

    Thanked by 1rpqu
  • VoidVoid Member
    edited May 6

    Dnssuc

    Thanked by 1rpqu
Sign In or Register to comment.