Re: [DNSOP] Asking TLD's to perform checks.

"Ralf Weber" <dns@fl1ger.de> Sat, 07 November 2015 15:17 UTC

Return-Path: <dns@fl1ger.de>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BB271B34C5 for <dnsop@ietfa.amsl.com>; Sat, 7 Nov 2015 07:17:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.501
X-Spam-Level:
X-Spam-Status: No, score=-0.501 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CjyVYQmPoUC9 for <dnsop@ietfa.amsl.com>; Sat, 7 Nov 2015 07:17:46 -0800 (PST)
Received: from smtp.guxx.net (nyx.guxx.net [85.10.208.173]) by ietfa.amsl.com (Postfix) with ESMTP id A8E7F1B34C6 for <dnsop@ietf.org>; Sat, 7 Nov 2015 07:17:46 -0800 (PST)
Received: by nyx.guxx.net (Postfix, from userid 107) id 0E69E5F40656; Sat, 7 Nov 2015 16:17:43 +0100 (CET)
Received: from [64.89.232.145] (p57B9F0B5.dip0.t-ipconnect.de [87.185.240.181]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by nyx.guxx.net (Postfix) with ESMTPSA id 614D35F403C3; Sat, 7 Nov 2015 16:17:42 +0100 (CET)
From: Ralf Weber <dns@fl1ger.de>
To: Antoin Verschuren <ietf@antoin.nl>
Date: Sat, 07 Nov 2015 16:17:40 +0100
Message-ID: <1BC22DBC-44DE-4168-B237-4D9BE2036DD7@fl1ger.de>
In-Reply-To: <0A76BF2A-D0EB-4111-B2DD-D85F011B04F6@antoin.nl>
References: <20151105235402.39FFC3BF2F29@rock.dv.isc.org> <8D78B784-34D3-421E-B82C-52DD32E22B74@fl1ger.de> <0A76BF2A-D0EB-4111-B2DD-D85F011B04F6@antoin.nl>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
X-Mailer: MailMate (1.9.3r5164)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/D9ODcbolD8ak5ww2ikcJ6Ggpz3o>
Cc: dnsop@ietf.org
Subject: Re: [DNSOP] Asking TLD's to perform checks.
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Nov 2015 15:17:48 -0000

Moin!

On 6 Nov 2015, at 18:50, Antoin Verschuren wrote:

> Op 6 nov. 2015, om 08:46 heeft Ralf Weber <dns@fl1ger.de> het volgende 
> geschreven:
>
>>>
>> Really TLDs doing repeated checks? I know some do when you
>> register domains, but repeatedly? Examples?
>
> .nl f.e.
> Registrars get a monthly report on DNS errors with a score of how they 
> technicaly compete to their competitors.
> In addition to that, they get sent a feed of validation errors for 
> DNSSEC for the domains under their control.
> .nl managed to get validation errors down that way to improve DNSSEC 
> adoption on resolvers.
> See https://www.sidnlabs.nl/a/weblog/de-dnssec-validatiemonitor (in 
> dutch, google translate is your friend)
Cool. Thanks for the link, and thanks to SIDN for doing this. Seems to 
be effective, though the number doesn't seem to go to 0. If I understand 
it correctly (or google translated it correct) there is no sanction for 
the registrar only information that something is not working.

So long
-Ralf