Well, at least it seems that they're not (ab)using it for now. ``` $ dig letsencrypt.cn ; <<>> DiG 9.11.0-P1 <<>> letsencrypt.cn ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63776 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;letsencrypt.cn. IN A ;; ANSWER SECTION: letsencrypt.cn. 3481 IN A 211.151.125.110 ;; Query time: 0 msec ;; SERVER: [scrambled] ;; WHEN: Sun Dec 18 15:30:24 JST 2016 ;; MSG SIZE rcvd: 59 $ curl letsencrypt.cn <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd";> <HTML><HEAD><TITLE>Service Unavailable</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD> <BODY><h2>Service Unavailable</h2> <hr><p>HTTP Error 503. The service is unavailable.</p> </BODY></HTML> ``` _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
