On Sat, 29 Sep 2012, Dan York wrote:
On Friday, September 28, 2012, Mark Andrews wrote:In message <[email protected]>, Dan York writes: > Is there a newer version of 'dig' that supports TLSA records? I just = > received this on Mac OS X 10.7.4: > ----- > dyork$ dig +dnssec -t tlsa torproject.org > ;; Warning, ignoring invalid type tlsa > ----- dig +dnssec type53 torproject.org
http://www.iana.org/assignments/dns-parameters Note the RRtype for TLSA is 52, not 53. note also that it is located in a prefix, so use: dig +dnssec type52 _443._tcp.www.torproject.org It seems torproject.org has no TLSA record, only www.torproject.org does, so CC:ing Jake so he can ping the right people to fix that Paul Paul _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
