> So what are you suggesting? That a dlv.isc.org server went ape and > returned an insecure response for (IN,SOA,dlv.isc.org)? Or that the > user is under attack with faked responses?
I don't think anyone was suggesting anything, just explaining what the message means. Which is that isc.org has a secure delegation (that is, a DS record) for dlv.isc.org, but for some reason a query for dlv.isc.org/SOA got a response with no signatures. Possibly there's a misbehaving middlebox involved. -- Evan Hunt -- e...@isc.org Internet Systems Consortium, Inc. _______________________________________________ bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
