Of long names...
Mark Andrews
marka at isc.org
Mon Mar 16 00:59:50 UTC 2015
In message <55062475.6030806 at acm.org>, Timothe Litt writes:
> Thanks. I appreciate the extra eyes.
>
> I'm pretty sure that GoDaddy has a problem between their WebGUI's database
> and their servers. The records appear in the former, but not (as you
> saw), the latter.
> Even though their GUI exports the zone file containing them with the
> same zone serial number that your dig's SOA revealed.
I would say "It looks like you failed to update the serial. Bump
the serial and reload." if this was reported to bind-bugs.
What is exported could be "to be loaded" content, rather than
currently loaded content. Add another record and publish the zone.
If you get that record and not the "long name" records then you
have proof of a problem. You can then remove the extra record.
> After some more detective work, I had a long, unsatisfactory 'webchat'
> with GoDaddy support. They had all sorts of reasons why they have no
> problem and I'm, er, 'wrong'. Some would be extremely funny if told to a
> technical audience.
>
> And since there's no problem, they refuse to escalate. I've made an
> out-of-band attempt to get the attention of their management.
>
> FWIW, bind is quite happy to accept these names in a domain where I run
> my own servers.
>
> Timothe Litt
> ACM Distinguished Engineer
> --------------------------
> This communication may not represent the ACM or my employer's views,
> if any, on the matters discussed.
>
> On 15-Mar-15 19:49, Mukund Sivaraman wrote:
> > On Sun, Mar 15, 2015 at 08:26:35AM -0400, Timothe Litt wrote:
> >> Discussing a 'you don't handle long names' issue that I discovered with
> >> an application's developer, I thought I'd create a test case or two
> for him.
> >>
> >> I did, but they don't resolve. I might be missing something, so some
> >> other eyes would be appreciated.
> >>
> >> The test domain is hosted on godaddy's DNS. (Because, well, it's a
> test
> >> domain.)
> >>
> >> dns fingerprint (w3dt.net) claims their server is 'VeriSign ATLAS'
> Does
> >> anyone have experience with this server?
> >>
> >> The recursive servers queried are mine (bind) - I've flushed their
> >> caches. I've also tried several web services that run DNS lookups; the
> >> results are consistent. NXDOMAIN
> > The authoritative nameservers for litts.us are returning NXDOMAIN for
> > AAAA queries on these names:
> >
> > [muks at totoro ~]$ dig -t NS litts.us
> >
> > ; <<>> DiG 9.9.6-P1-RedHat-9.9.6-8.P1.fc21 <<>> -t NS litts.us
> > ;; global options: +cmd
> > ;; Got answer:
> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25029
> > ;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 5
> >
> > ;; OPT PSEUDOSECTION:
> > ; EDNS: version: 0, flags:; udp: 4096
> > ;; QUESTION SECTION:
> > ;litts.us. IN NS
> >
> > ;; ANSWER SECTION:
> > litts.us. 3600 IN NS ns71.domaincontrol.com.
> > litts.us. 3600 IN NS ns72.domaincontrol.com.
> >
> > ;; ADDITIONAL SECTION:
> > NS72.domaincontrol.com. 132465 IN A 208.109.255.46
> > NS72.domaincontrol.com. 172484 IN AAAA 2607:f208:302::2e
> > ns71.domaincontrol.com. 132465 IN A 216.69.185.46
> > ns71.domaincontrol.com. 172484 IN AAAA 2607:f208:206::2e
> >
> > ;; Query time: 83 msec
> > ;; SERVER: 127.0.0.1#53(127.0.0.1)
> > ;; WHEN: Mon Mar 16 05:13:23 IST 2015
> > ;; MSG SIZE rcvd: 185
> >
> > [muks at totoro ~]$ dig +norecurse @ns71.domaincontrol.com -t aaaa
> oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-fe
> eling.everythings-lost-in-the-hay.litts.us
> >
> > ; <<>> DiG 9.9.6-P1-RedHat-9.9.6-8.P1.fc21 <<>> +norecurse
> @ns71.domaincontrol.com -t aaaa
> oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-fe
> eling.everythings-lost-in-the-hay.litts.us
> > ; (2 servers found)
> > ;; global options: +cmd
> > ;; Got answer:
> > ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65035
> > ;; flags: qr aa; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
> >
> > ;; OPT PSEUDOSECTION:
> > ; EDNS: version: 0, flags:; udp: 4096
> > ;; QUESTION SECTION:
> >
> ;oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-f
> eeling.everythings-lost-in-the-hay.litts.us. IN AAAA
> >
> > ;; AUTHORITY SECTION:
> > litts.us. 3600 IN SOA ns71.domaincontrol.com.
> dns.jomax.net. 2015031503 28800 7200 604800 3600
> >
> > ;; Query time: 86 msec
> > ;; SERVER: 216.69.185.46#53(216.69.185.46)
> > ;; WHEN: Mon Mar 16 05:14:53 IST 2015
> > ;; MSG SIZE rcvd: 216
> >
> > [muks at totoro ~]$ dig +norecurse @ns72.domaincontrol.com -t aaaa
> oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-fe
> eling.everythings-lost-in-the-hay.litts.us
> >
> > ; <<>> DiG 9.9.6-P1-RedHat-9.9.6-8.P1.fc21 <<>> +norecurse
> @ns72.domaincontrol.com -t aaaa
> oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-fe
> eling.everythings-lost-in-the-hay.litts.us
> > ; (2 servers found)
> > ;; global options: +cmd
> > ;; Got answer:
> > ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15081
> > ;; flags: qr aa; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
> >
> > ;; OPT PSEUDOSECTION:
> > ; EDNS: version: 0, flags:; udp: 4096
> > ;; QUESTION SECTION:
> >
> ;oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-f
> eeling.everythings-lost-in-the-hay.litts.us. IN AAAA
> >
> > ;; AUTHORITY SECTION:
> > litts.us. 3600 IN SOA ns71.domaincontrol.com.
> dns.jomax.net. 2015031503 28800 7200 604800 3600
> >
> > ;; Query time: 83 msec
> > ;; SERVER: 208.109.255.46#53(208.109.255.46)
> > ;; WHEN: Mon Mar 16 05:15:41 IST 2015
> > ;; MSG SIZE rcvd: 216
> >
> >
> > Mukund
>
>
>
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list