Status Update
No update yet.
Comments
ha...@gmail.com
mn...@gmail.com
Hello,
We are reviewing your request and need to verify it is from the organization which owns this address block. I have reached out to the owner of the address block,
Alternatively, if you can reply or send me an email from
Thanks!
pu...@google.com
We have already answered the email with the mail j.medrano@libertycr.com
Thank you for contacting us.
Let's continue the process from the other email account.
Regards
ri...@gmail.com
Yes, I heard back from
We've moved forward with this request and the changes (increasing client QPS to 5,000) will roll out next week.
pu...@google.com
Dear Google team.
Thank you very much for the update.
We will keep an eye on the increase over the next week to monitor our monitoring graphs.
Regards.
ri...@gmail.com
OK. I don't have a good sense of the number who will be affected in domains they're actually trying to access. The potentially affected are at least all dnsmasq users with DNSSEC validation turned on and Google Public DNS as their upstream DNS provider, and maybe all users with any validating setup (not just dnsmasq) using Google as the upstream and not setting +cd bit, if the DS lookup is mandatory here, which I think it is.
Description
On many queries I have tried for a DS record that does not exist, within a secure zone, Google DNS seems to produce ServFail. This prevents DNSSEC validating clients that want to confirm non-existence of a secure delegation from doing so. Some examples: