From owner-freebsd-questions@freebsd.org  Mon Jan 21 14:01:47 2019
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 37D0414AA970
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Mon, 21 Jan 2019 14:01:47 +0000 (UTC)
 (envelope-from kremels@kreme.com)
Received: from mail.covisp.net (mail.covisp.net [65.121.55.42])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id CC6EA8AC51
 for <freebsd-questions@freebsd.org>; Mon, 21 Jan 2019 14:01:46 +0000 (UTC)
 (envelope-from kremels@kreme.com)
Subject: Re: DNS Flag Day 
Content-Type: text/plain;
	charset=utf-8
From: "@lbutlr" <kremels@kreme.com>
In-Reply-To: <alpine.BSF.2.21.9999.1901201548260.40690@mail2.nber.org>
Date: Mon, 21 Jan 2019 07:01:39 -0700
X-Random-Signature: Apple Broke Applescrip[t access to signatures, random sigs
 now powered by Keyboard Maestro Pro
 <https://www.keyboardmaestro.com/>
X-Face: )^b5"R:T7U>9~:PEn3YkzMfW*[b1qKeU.fP9C8~8HpU9}lA&6`bH1
Message-Id: <94D235F9-64E7-4CCF-B2C8-F8EBA871C646@kreme.com>
Content-Transfer-Encoding: quoted-printable
References: <alpine.BSF.2.21.9999.1901201548260.40690@mail2.nber.org>
To: Nicola Mingotti via freebsd-questions <freebsd-questions@freebsd.org>
X-Mailer: Apple Mail (2.3445.102.3)
X-Rspamd-Queue-Id: CC6EA8AC51
X-Spamd-Bar: ------
Authentication-Results: mx1.freebsd.org
X-Spamd-Result: default: False [-6.99 / 15.00];
 NEURAL_HAM_MEDIUM(-1.00)[-1.000,0];
 NEURAL_HAM_SHORT(-0.99)[-0.986,0]; REPLY(-4.00)[];
 NEURAL_HAM_LONG(-1.00)[-1.000,0]
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Jan 2019 14:01:47 -0000

On 20 Jan 2019, at 13:49, Daniel Feenberg <feenberg@nber.org> wrote:
> Is DNS Flag Day something that should concern someone using FreeBSD =
11.2 for name service? I ran the tester at:
>=20
>   https://dnsflagday.net/
>=20
> and it indicated a need for concern, but the details were =
unintelligible and there was no suggestion of "what to do".

Without knowing what the messages were, it=E2=80=99s pretty much =
impossible to give you any advice.

When I checked my domain, it simply replied with =E2=80=9CSLOW=E2=80=9D =
in a red circle.

 =C2=AF\_(=E3=83=84)_/=C2=AF=20

I can live with slow for now. I suppose I should read up on RFC 6891 =
though and this time for sure get DNSSEC setup.

(I am running bine 9.12.3P1_2)

--=20
Q is for QUENTIN who sank in the mire
R is for RHODA consumed by a fire