error (broken trust chain) resolving
aclegg at isc.org
Tue Nov 2 15:27:14 UTC 2010
On 11/2/2010 8:11 AM, Brian J. Murrell wrote:
> Since enabling DNSSEC on my resolving server I have been seeing various
> instances of the following sort of messages:
> named error (broken trust chain) resolving '126.96.36.199.sa-
> trusted.bondedsender.org/TXT/IN': 188.8.131.52#53
> '184.108.40.206.bb.barracudacentral.org/A/IN': 220.127.116.11#53
> named error (broken trust chain) resolving '18.104.22.168.sa-
> trusted.bondedsender.org/TXT/IN': 22.214.171.124#53
> I haven't been able to find an explanation of what that "broken trust chain"
> message means, exactly.
> Anyone care to explain?
There isn't a chain of signed DS records that lead from a trust anchor
to the thing that you are trying to resolve.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 260 bytes
Desc: OpenPGP digital signature
More information about the bind-users