[Yeti DNS Discuss] 答复: 答复: Phase B of PINZ is to be triggered soon 答复: Notification and Call for comments for the incoming Yeti experiment (Changes in 5.1 and 5.21 )

Davey Song(宋林健) ljsong at biigroup.cn
Tue May 22 03:07:58 UTC 2018 

Problem is fixed by updating a new root zone in BII DM. Good news is that no
DNSSEC validation failure was reported so far. PINZ works well :p

Davey
> -----邮件原件-----
> 发件人: discuss [mailto:discuss-bounces at lists.yeti-dns.org] 代表 Davey
> Song(宋林健)
> 发送时间: 2018年5月22日 8:07
> 收件人: discuss at lists.yeti-dns.org
> 抄送: distributors at lists.yeti-dns.org
> 主题: [Yeti DNS Discuss] 答复: Phase B of PINZ is to be triggered soon 答
复:
> Notification and Call for comments for the incoming Yeti experiment
(Changes
> in 5.1 and 5.21 )
> 
> The new zone was created 5 hours ago. The late night time in China.
> 
> The bad news is that I found the BII's key is missing due to a bug in the
> script:
> 
> KSK:59302
> ZSK:39570  48843
> 
> Which means the priming process (resolver asks for . NS and DNSKEY) will
be
> affected for the root pulling zone from BII DM.
> 
> bii.dns-lab.net.
> yeti.aquaray.com.
> yeti-dns01.dnsworkshop.org.
> yeti.jhcloos.net.
> yeti.mind-dns.nl.
> yeti-ns.as59715.net.
> yeti-ns.datev.net.
> yeti-ns.ix.ru.
> yeti-ns.tisf.net
> 
> We will generate a fixed zone with SOA serial 2018052102 to fix it ASAP.
> Yeti root servers will receive a notify with new soa. To continue the
model,
> when next IANA serial come, BII DM will increase the serial to 2018052103,
> one number ahead IANA serial until we reach 2018052200.
> 
> Davey
> > -----邮件原件-----
> > 发件人: Davey Song(宋林健) [mailto:ljsong at biigroup.cn]
> > 发送时间: 2018年5月21日 18:07
> > 收件人: 'Davey Song(宋林健)'; discuss at lists.yeti-dns.org
> > 主题: Phase B of PINZ is to be triggered soon 答复: [Yeti DNS Discuss]
> > Notification and Call for comments for the incoming Yeti experiment
> (Changes
> > in 5.1 and 5.21 )
> >
> > Hi folks,
> >
> > As we planned for PINZ experiment, now slot4 has been started and new
> > cron job of DM script is working now in BII DM after UTC 0700 today.
> > We are
> waiting
> > for new IANA serial (next is 2018052101, now is 2018052100) to put new
> zone
> > with IANA RRSIG into Yeti system as planned in Phase B.
> >
> > We will keep eyes on it to see what's going to happen.
> >
> > Davey
> >
> >
> > > -----邮件原件-----
> > > 发件人: discuss [mailto:discuss-bounces at lists.yeti-dns.org] 代表 Davey
> > > Song(宋林健)
> > > 发送时间: 2018年4月17日 12:37
> > > 收件人: discuss at lists.yeti-dns.org
> > > 主题: [Yeti DNS Discuss] Notification and Call for comments for the
> > incoming
> > > Yeti experiment (Changes in 5.1 and 5.21 )
> > >
> > > Hi folks,
> > >
> > > I'm writing to send this notification and call for comments for a
> > > incoming
> > yeti
> > > experiment which may cause unforeseen impact to Yeti users.
> > >
> > > The experiment called PINZ (Preserving IANA NSEC Chain and ZSK
> > > RRSIGs) which is proposed last year. And the first introduction of
> > > PINZ is in a
> > Yeti blog
> > > post:
> > >
> >
>
http://yeti-dns.org/yeti/blog/2017/08/22/Preserving-IANA-NSEC-Chain-and-ZSK
> > > -
> > > RRSIGs.html.
> > >
> > > Yeti coordinators prepared it for quite a while in a prudent manner
> > because
> > > PINZ will change the Yeti root zone largely. The lab test was done
> > > and it
> > proved
> > > OK currently in lab environment, but unforeseen problems may be
> > > beyond our control which may cause DNSSEC validation fail for some
> > > validating
> > resolvers.
> > > So we draft a experiment plan for PINZ in Github repo
> > > (https://github.com/BII-Lab/Yeti-Project/blob/master/doc/Experiment-
> > > PI
> > > NZ.m
> > > d)
> > > and send this notification in advance for Yeti resolver operators.
> > >
> > > Please do check the draft plan and be aware what will be changed
> > > during
> > PINZ
> > > experiment at two milestone the 1st May and 21st May.
> > >
> > > Best regards,
> > > Davey
> > >
> > >
> > >
> > >
> > > _______________________________________________
> > > discuss mailing list
> > > discuss at lists.yeti-dns.org
> > > http://lists.yeti-dns.org/mailman/listinfo/discuss
> 
> 
> 
> _______________________________________________
> discuss mailing list
> discuss at lists.yeti-dns.org
> http://lists.yeti-dns.org/mailman/listinfo/discuss

More information about the discuss mailing list