> On Jun 12, 2024, at 18:59, Bill Woodcock wrote:
> My understanding is that the DDoS is affecting communications between the
> publicly-visible authoritatives and the DNSSEC outbound master. But LR is
> not one of our constituents, so I don’t have a first-person view.
…and my colleagues who
> On Jun 12, 2024, at 18:29, Ben Cartwright-Cox via dns-operations
> wrote:
> Without speculating too much, the DDoS part is very likely not the core
> issue, the zone is handing out invalid DNSSEC signatures
My understanding is that the DDoS is affecting communications between the
publicly-
> How many QPS is serious? Can you describe the query pattern in more
> detail?
third day so far. UDP garbage cctld enumeration at about 1k qps.
TCP spoof about half that
randy
___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://
--- Begin Message ---
Is it because of DDoS or DNSSEC ?DNSVIZ is reporting some issues due to DNSSEC —https://dnsviz.net/d/lr/dnssec/Regards Gaurav KansalOn 12 Jun 2024, at 22:03, kim.dav...@iana.org wrote:
The IANA Root Zone Management team has made contact with the .LR manager and they ha
--- Begin Message ---
How many QPS is serious? Can you describe the query pattern in more detail?
On Wed, 12 Jun 2024 at 17:32, Randy Bush wrote:
>
> anyone else seeing somewhat serious distributed cctld enumeration
> attempts?
>
> randy
> ___
> dns-ope
--- Begin Message ---
Without speculating too much, the DDoS part is very likely not the
core issue, the zone is handing out invalid DNSSEC signatures
https://dnsviz.net/d/1xbet.com.lr/Zmm78A/dnssec/
The DDoS part might be due to clients/recusors/resolvers retrying due
to SERVFAIL and causing a "b
anyone else seeing somewhat serious distributed cctld enumeration
attempts?
randy
___
dns-operations mailing list
dns-operations@lists.dns-oarc.net
https://lists.dns-oarc.net/mailman/listinfo/dns-operations
The IANA Root Zone Management team has made contact with the .LR manager and
they have indicated they are working on the problem, which they have reported
is DDOS-related.
kim
From: dns-operations on behalf of ISOC
Liberia
Date: Wednesday, June 12, 2024 at 16:46
To: "dns-operati...@dns-oarc.
Dear Technicians,
I am reaching out because the Liberia country-code-top-level-domain that is
the .lr is not resolving due to DNSSEC, please help. All of the systems
that use the .lr have been shut down since yesterday.
Thanks,
*Matthew T. Roberts*
President, Internet Society (*ISOC*) - Liberia
