Re: nxdomain rfc2308 type 2, but authority is incorrect

[William Herrin <bill () herrin us>]

On Wed, Aug 10, 2016 at 3:27 PM, Joe Maimon <jmaimon () ttec com> wrote:
> William Herrin wrote:
> > On Wed, Aug 10, 2016 at 2:05 PM, Joe Maimon <jmaimon () ttec com> wrote:
> > > www.kissimmee.org
> > > Windows 2008 dns cannot resolve it.

> > I notice that the nameresolve.com servers returning the CNAME to
> > kissimmee-fl.vts.hosting are also returning an SOA record for
> > "hosting" in the authority section which looks very strange to me.
> > Perhaps Windows is rejecting it as an invalid, possibly dangerous
> > response packet?
>
> I think that provided SOA record is a "local" or "alternate" version and its
> existence is why the nxdomain response is being sent to the windows dns
> server that accepts it at face value (but does not appear to store it in
> cache, so this is not precisely cache poisoning)

Oh! I missed that. ns*.nameresolve.com, the authoratative name servers
for kissimmee.org, are saying NXDOMAIN for www.kissimmee.org. Any idea
what DNS server nameresolve.com uses? Because that's... wow.

-Bill

-- 
William Herrin ................ herrin () dirtside com  bill () herrin us
Owner, Dirtside Systems ......... Web: <http://www.dirtside.com/>