dnscrypt.pl
Updated:
2023-08-16 15:40:23 UTC (306 days ago)
Go to most recent »
Notices
DNSSEC Authentication Chain
RRset status
Insecure (6)
- dnscrypt.pl/A
- dnscrypt.pl/MX
- dnscrypt.pl/NS
- dnscrypt.pl/NSEC3PARAM
- dnscrypt.pl/SOA
- dnscrypt.pl/TXT
Secure (1)
- pl/SOA
DNSKEY/DS/NSEC status
Insecure (1)
- dnscrypt.pl/DNSKEY (alg 13, id 41791)
Secure (6)
- ./DNSKEY (alg 8, id 11019)
- ./DNSKEY (alg 8, id 20326)
- NSEC3 proving non-existence of dnscrypt.pl/DS
- pl/DNSKEY (alg 8, id 10458)
- pl/DNSKEY (alg 8, id 59899)
- pl/DS (alg 8, id 59899)
Delegation status
Insecure (1)
- pl to dnscrypt.pl
Secure (1)
- . to pl
Notices
Errors (4)
- NSEC3 proving non-existence of dnscrypt.pl/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
- NSEC3 proving non-existence of dnscrypt.pl/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
- pl zone: The following NS name(s) did not resolve to address(es): g-dns.pl
- dnscrypt.pl/DS has errors; select the "Denial of existence" DNSSEC option to see them.
Warnings (4)
- . to pl: The following NS name(s) were found in the delegation NS RRset (i.e., in the . zone), but not in the authoritative NS RRset: g-dns.pl See RFC 1034, Sec. 4.2.2.
- NSEC3 proving non-existence of dnscrypt.pl/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
- NSEC3 proving non-existence of dnscrypt.pl/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
- dnscrypt.pl/DS has warnings; select the "Denial of existence" DNSSEC option to see them.
JavaScript is required to make the graph below interactive.
