Of long names...
Timothe Litt
litt at acm.org
Sun Mar 15 12:26:35 UTC 2015
Discussing a 'you don't handle long names' issue that I discovered with
an application's developer, I thought I'd create a test case or two for him.
I did, but they don't resolve. I might be missing something, so some
other eyes would be appreciated.
The test domain is hosted on godaddy's DNS. (Because, well, it's a test
domain.)
dns fingerprint (w3dt.net) claims their server is 'VeriSign ATLAS' Does
anyone have experience with this server?
The recursive servers queried are mine (bind) - I've flushed their
caches. I've also tried several web services that run DNS lookups; the
results are consistent. NXDOMAIN
The two names in question each have AAAA records:
oh.what.a.beautiful.morning.oh.what.a.beautiful.day.oh.what.a.wonderful.feeling.everythings.lost.in.the.hay.litts.us
oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-feeling.everythings-lost-in-the-hay.litts.us
The current zone serial number is 2015031503
dig reports that serial with a NXDOMAIN response to each name, so it's
not a propagation issue.
Exporting the zone file (yes, this is the entire file -- 10 records) gives:
; SOA Record
LITTS.US. 3600 IN SOA ns71.domaincontrol.com. dns.jomax.net (
2015031503
28800
7200
604800
3600
)
; A Records
@ 3600 IN A 97.74.42.79
; CNAME Records
www 3600 IN CNAME @
; MX Records
@ 3600 IN MX 10 nano.litts.net
; TXT Records
@ 3600 IN TXT "v=spf1 ip4:96.233.62.58 ip4:96.233.62.59
ip4:96.233.62.60 ip4:96.233.62.61 ip4:96.233.62.62 mx a:micro.litts.net
a:nano.litts.net a:pico.sb.litts.net a:overkill.sb.litts.net
a:hagrid.sb.litts.net a:smtp.litts.net -all"
; AAAA Records
oh.what.a.beautiful.morning.oh.what.a.beautiful.day.oh.what.a.wonderful.feeling.everythings.lost.in.the.hay
1800 IN AAAA 2001:4830:11a2:941::43
beautiful.feeling 600 IN AAAA 2001:4830:11a2:941::43
oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-feeling.everythings-lost-in-the-hay
600 IN AAAA 2001:4830:11a2:941::43
; NS Records
@ 3600 IN NS ns71.domaincontrol.com
@ 3600 IN NS ns72.domaincontrol.com
Dig lookups fail on the long names, but the SOA shows the correct serial.
dig
oh.what.a.beautiful.morning.oh.what.a.beautiful.day.oh.what.a.wonderful.feeling.everythings.lost.in.the.hay.litts.us
aaaa
; <<>> DiG 9.9.4-P1 <<>>
oh.what.a.beautiful.morning.oh.what.a.beautiful.day.oh.what.a.wonderful.feeling.everythings.lost.in.the.hay.litts.us
aaaa
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;oh.what.a.beautiful.morning.oh.what.a.beautiful.day.oh.what.a.wonderful.feeling.everythings.lost.in.the.hay.litts.us.
IN AAAA
;; AUTHORITY SECTION:
litts.us. 3600 IN SOA ns71.domaincontrol.com.
dns.jomax.net. 2015031503 28800 7200 604800 3600
;; Query time: 136 msec
;; SERVER: 192.168.148.6#53(192.168.148.6)
;; WHEN: Sun Mar 15 06:57:55 EDT 2015
;; MSG SIZE rcvd: 216
dig
oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-feeling.everythings-lost-in-the-hay.litts.us
aaaa
; <<>> DiG 9.9.4-P1 <<>>
oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-feeling.everythings-lost-in-the-hay.litts.us
aaaa
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60478
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;oh-what-a-beautiful-morning.oh-what-a-beautiful-day.oh-what-a-wonderful-feeling.everythings-lost-in-the-hay.litts.us.
IN AAAA
;; AUTHORITY SECTION:
litts.us. 2617 IN SOA ns71.domaincontrol.com.
dns.jomax.net. 2015031503 28800 7200 604800 3600
;; Query time: 7 msec
;; SERVER: 192.168.148.4#53(192.168.148.4)
;; WHEN: Sun Mar 15 07:01:16 EDT 2015
;; MSG SIZE rcvd: 216
I have verified that bind is happy to create and resolve similar names...
Oh, and the third AAAA record does resolve, which makes me suspicious of
the name length.
Any ideas on this mystery?
--
Timothe Litt
ACM Distinguished Engineer
--------------------------
This communication may not represent the ACM or my employer's views,
if any, on the matters discussed.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4942 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20150315/ab986629/attachment.bin>
More information about the bind-users
mailing list