tu-berlin.de
Updated:
2022-06-17 22:33:07 UTC (887 days ago)
Go to most recent »
Notices
DNSSEC Authentication Chain
RRset status
Insecure (5)
- tu-berlin.de/A
- tu-berlin.de/MX
- tu-berlin.de/NS
- tu-berlin.de/SOA
- tu-berlin.de/TXT
Secure (1)
- de/SOA
DNSKEY/DS/NSEC status
Secure (6)
- ./DNSKEY (alg 8, id 20326)
- ./DNSKEY (alg 8, id 47671)
- NSEC3 proving non-existence of tu-berlin.de/DS
- de/DNSKEY (alg 8, id 26755)
- de/DNSKEY (alg 8, id 42156)
- de/DS (alg 8, id 26755)
Delegation status
Insecure (1)
- de to tu-berlin.de
Secure (1)
- . to de
Notices
Errors (3)
- NSEC3 proving non-existence of tu-berlin.de/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
- NSEC3 proving non-existence of tu-berlin.de/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
- tu-berlin.de/DS has errors; select the "Denial of existence" DNSSEC option to see them.
Warnings (4)
- NSEC3 proving non-existence of tu-berlin.de/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
- NSEC3 proving non-existence of tu-berlin.de/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
- de to tu-berlin.de: No response was received from the server over UDP (tried 6 times) until the COOKIE EDNS option was removed (however, this server appeared to respond legitimately to other queries with the COOKIE EDNS option present). See RFC 6891, Sec. 6.1.2. (2001:678:2::53, UDP_-_EDNS0_4096_D_KN)
- tu-berlin.de/DS has warnings; select the "Denial of existence" DNSSEC option to see them.
JavaScript is required to make the graph below interactive.
