From owner-freebsd-stable@freebsd.org  Fri Jan 18 01:11:29 2019
Return-Path: <owner-freebsd-stable@freebsd.org>
Delivered-To: freebsd-stable@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1517A1487F1E
 for <freebsd-stable@mailman.ysv.freebsd.org>;
 Fri, 18 Jan 2019 01:11:29 +0000 (UTC)
 (envelope-from michael+lists@burnttofu.net)
Received: from burnttofu.net (burnttofu.net [IPv6:2607:fc50:1:9d00::9977])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits)
 client-signature RSA-PSS (1024 bits) client-digest SHA256)
 (Client CN "burnttofu.net", Issuer "burnttofu.net" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 226098F86A
 for <freebsd-stable@freebsd.org>; Fri, 18 Jan 2019 01:11:26 +0000 (UTC)
 (envelope-from michael+lists@burnttofu.net)
Received: from elwha.brokendns.net (elwha.brokendns.net
 [IPv6:2607:f2f8:a544:0:0:0:0:2])
 by burnttofu.net (8.15.2/8.15.2) with ESMTPS id x0I1BN8Y058178
 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NOT);
 Thu, 17 Jan 2019 20:11:25 -0500 (EST)
 (envelope-from michael+lists@burnttofu.net)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=burnttofu.net; s=bt;
 t=1547773885; bh=PstwwHrKuA0QhxGHDyLMZg4wMovedWiLFPNfEnqHcXA=;
 h=Subject:To:References:From:Date:In-Reply-To;
 b=PlrmAPhFzcQfEmNlzwVfRBTkdS/uKC0n2hiZFnyqzs6eiCEFeRVnz7bFWqhe41dVR
 OTa7+fer7hDE1SCuEcnWHcYWpX+tmmL8bpCHPQwK8TItjk3QVDhpI8a7mZ5MylHMg1
 wG0WQJFj7i8ayIs9eEZlkKN1ZYC6hpo7c9rJbF3GypbvhhwH0GCDqBDY/22PqOxIU+
 xLkjjxa69ZWKX4+3cbbihWLS2RWPXyv82ltPWLebCCyUjK2jD/EvpHmXTqLTuT02R/
 ull3PyplB/B3OiucXQsYeczjK4HVCZHIhimdzLzwKTSXi9StxFhEtHyzf8NpVnpt/H
 0mvnUZTo74Gdg==
Received: from nofx.lbl.gov (nofx.lbl.gov [IPv6:2620:83:8000:107::f])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits))
 (No client certificate requested)
 by elwha.brokendns.net (5.65c/IDA-1.4.4/5.63) with ESMTPSA id C770B62F71;
 Thu, 17 Jan 2019 17:11:24 -0800 (PST)
Subject: Re: DNS Flag Day and freebsd.org problems
To: George Mitchell <george+freebsd@m5p.com>, freebsd-stable@freebsd.org
References: <7F87DD94-6C39-4115-A17A-CEE45D45AF91@ee.ryerson.ca>
 <3ab01963-60ec-3908-574e-b2c2dbf06997@m5p.com>
From: Michael Sinatra <michael+lists@burnttofu.net>
Message-ID: <d8785a09-a643-32f3-67ff-b136879d519c@burnttofu.net>
Date: Thu, 17 Jan 2019 17:11:15 -0800
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:60.0) Gecko/20100101
 Thunderbird/60.4.0
MIME-Version: 1.0
In-Reply-To: <3ab01963-60ec-3908-574e-b2c2dbf06997@m5p.com>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Greylist: Default is to whitelist mail, not delayed by milter-greylist-4.6.2
 (burnttofu.net [IPv6:2607:fc50:1:9d00:0:0:0:9977]);
 Thu, 17 Jan 2019 20:11:25 -0500 (EST)
X-Rspamd-Queue-Id: 226098F86A
X-Spamd-Bar: ---
Authentication-Results: mx1.freebsd.org;
 dkim=pass header.d=burnttofu.net header.s=bt header.b=PlrmAPhF
X-Spamd-Result: default: False [-3.35 / 15.00]; ARC_NA(0.00)[];
 RCVD_VIA_SMTP_AUTH(0.00)[];
 R_DKIM_ALLOW(-0.20)[burnttofu.net:s=bt];
 URL_IN_SUBJECT(0.40)[freebsd.org]; FROM_HAS_DN(0.00)[];
 TO_DN_SOME(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0];
 RCVD_TLS_ALL(0.00)[]; TAGGED_RCPT(0.00)[freebsd];
 MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[burnttofu.net];
 NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCVD_COUNT_THREE(0.00)[3];
 TO_MATCH_ENVRCPT_SOME(0.00)[];
 DKIM_TRACE(0.00)[burnttofu.net:+]; RCPT_COUNT_TWO(0.00)[2];
 MX_GOOD(-0.01)[burnttofu.net,manasquan.burnttofu.net];
 R_SPF_NA(0.00)[]; NEURAL_HAM_SHORT(-0.90)[-0.901,0];
 FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+];
 IP_SCORE(-0.54)[ipnet: 2607:fc50::/36(-1.45), asn: 13647(-1.15), country:
 US(-0.08)]; 
 ASN(0.00)[asn:13647, ipnet:2607:fc50::/36, country:US];
 TAGGED_FROM(0.00)[lists]; MID_RHS_MATCH_FROM(0.00)[]
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-stable>, 
 <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
 <mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Jan 2019 01:11:29 -0000

On 1/17/19 4:42 PM, George Mitchell wrote:
> On 1/17/19 6:55 PM, David Magda wrote:
>> Hello,
>>
>> On February 1, 2019, there will be some major changes to DNS with regards to EDNS:
>> [...]
>> It turns out that freebsd.org is effected by this:
>> [...]
>> Who is the person that should be looking at this for FreeBSD?
>> [...]
> 
> According to freebsd.org's SOA record, that would be
> hostmaster@freebsd.org.                       -- George

Agreed that this should go to hostmaster@freebsd.org, however, it's kind
of interesting to note the following:

The DNS servers that provide authoritative service for freebsd.org are
part of ISC's SNS service, which provides secondary DNS for non-profit
and educational orgs.  These are the servers which are showing the
dcookie=timeout.  So you're using ISC's testing service to show that
ISC's secondary name service isn't working.  Ironic.

Also, when I ran the test again, a bunch more errors showed up (as
opposed to what was in the cached version.  This also holds when I test
for the isc-sns.info zone (also served by the same servers).  I suspect
the freebsd.org hostmaster will probably want to drop a line to ISC.

michael