From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <dave.taht@gmail.com>
Received: from mail-wi0-x22a.google.com (mail-wi0-x22a.google.com
	[IPv6:2a00:1450:400c:c05::22a])
	(using TLSv1 with cipher RC4-SHA (128/128 bits))
	(Client CN "smtp.gmail.com",
	Issuer "Google Internet Authority G2" (verified OK))
	by huchra.bufferbloat.net (Postfix) with ESMTPS id E043B21F231
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sat, 19 Apr 2014 12:20:20 -0700 (PDT)
Received: by mail-wi0-f170.google.com with SMTP id bs8so597069wib.3
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sat, 19 Apr 2014 12:20:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type:content-transfer-encoding;
	bh=LYG2giH/gP8YdZIuSK88PF5+HowP5GCc6kXBWDf5nqU=;
	b=lw0fXxbJlKB7YC5U6oMXNn/5rOaC2zngsnUBG3m64SZxT8dXe42JMXSgRf+V75/IQu
	k9VDOOJL7hPGKW52cGZEUwdKM+d8Rie6iO9+b34mYtErYhqR9RkJsMShfyi1NF1woigY
	8RVkcEei7u0N2m94I417idjx34/aoXCa3t9N7hHuYZZ59pMFboawgSvTOoRGkALsizwi
	gCBTonAQlk/9Z53gHk/3pYgtWOz/cStQ2vkZ6wWA/+KEHBQLt2u6guGyuGr2cePw/i79
	kXyeAM9ZRpX+JFk+NeV0wpMllIsqWRrQbBoeRcpsHcLtg2iE8ReZ+AO7R4aJEgOgzdJY
	Qupg==
MIME-Version: 1.0
X-Received: by 10.180.78.225 with SMTP id e1mr7588155wix.17.1397935219054;
	Sat, 19 Apr 2014 12:20:19 -0700 (PDT)
Received: by 10.216.177.10 with HTTP; Sat, 19 Apr 2014 12:20:19 -0700 (PDT)
In-Reply-To: <CAA93jw6mtgE=zJ-Pp-H00ieNunUueMmyMGWGnLivPfPmgSpKOw@mail.gmail.com>
References: <CALQXh-OOfYzoHLUb25oDV1YNvR+VEECpHRyrjpPk5tzUUE8Xbw@mail.gmail.com>
	<CAA93jw6mtgE=zJ-Pp-H00ieNunUueMmyMGWGnLivPfPmgSpKOw@mail.gmail.com>
Date: Sat, 19 Apr 2014 12:20:19 -0700
Message-ID: <CAA93jw7tYyVpaB1qCqcsz_XJLmRe_s=N5Wpy6d234n1sp+gAkg@mail.gmail.com>
From: Dave Taht <dave.taht@gmail.com>
To: Aaron Wood <woody77@gmail.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Cc: cerowrt-devel <cerowrt-devel@lists.bufferbloat.net>
Subject: Re: [Cerowrt-devel] First DNSSEC failure with CeroWRT
X-BeenThere: cerowrt-devel@lists.bufferbloat.net
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Development issues regarding the cerowrt test router project
	<cerowrt-devel.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cerowrt-devel>
List-Post: <mailto:cerowrt-devel@lists.bufferbloat.net>
List-Help: <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Sat, 19 Apr 2014 19:20:21 -0000

you should report it to bank of america and see what happens.

root@lorna-gw:/etc/config# nslookup www.bankofamerica.com
Server:    127.0.0.1
Address 1: 127.0.0.1 localhost

Name:      www.bankofamerica.com
Address 1: 171.161.207.100
root@lorna-gw:/etc/config# nslookup sso-fi.bankofamerica.com
Server:    127.0.0.1
Address 1: 127.0.0.1 localhost

nslookup: can't resolve 'sso-fi.bankofamerica.com': Name or service not kno=
wn

On Sat, Apr 19, 2014 at 12:19 PM, Dave Taht <dave.taht@gmail.com> wrote:
> I'm not sure if what you are actually seeing here is a failure or a
> success! It does appear that this is
> indeed a bogus DS.
>
> http://dnssec-debugger.verisignlabs.com/sso-fi.bankofamerica.com
>
> On Sat, Apr 19, 2014 at 2:43 AM, Aaron Wood <woody77@gmail.com> wrote:
>> One of the many servers involved with BofA's online banking:
>>
>> Sat Apr 19 09:37:37 2014 daemon.info dnsmasq[29719]: using nameserver
>> 8.8.4.4#53
>> Sat Apr 19 09:37:37 2014 daemon.info dnsmasq[29719]: using nameserver
>> 8.8.8.8#53
>> Sat Apr 19 09:37:37 2014 daemon.info dnsmasq[29719]: using local address=
es
>> only for domain home.lan
>> Sat Apr 19 09:37:37 2014 daemon.info dnsmasq[29719]: read /etc/hosts - 1
>> addresses
>> Sat Apr 19 09:37:37 2014 daemon.info dnsmasq-dhcp[29719]: read /etc/ethe=
rs -
>> 0 addresses
>> Sat Apr 19 09:37:39 2014 daemon.info dnsmasq[29719]: query[A]
>> saml-bac.onefiserv.com from 172.30.42.99
>> Sat Apr 19 09:37:39 2014 daemon.info dnsmasq[29719]: forwarded
>> saml-bac.onefiserv.com to 8.8.4.4
>> Sat Apr 19 09:37:39 2014 daemon.info dnsmasq[29719]: forwarded
>> saml-bac.onefiserv.com to 8.8.8.8
>> Sat Apr 19 09:37:39 2014 daemon.info dnsmasq[29719]: dnssec-query[DS]
>> saml-bac.onefiserv.com to 8.8.4.4
>> Sat Apr 19 09:37:41 2014 daemon.info dnsmasq[29719]: reply
>> saml-bac.onefiserv.com is BOGUS DS
>> Sat Apr 19 09:37:41 2014 daemon.info dnsmasq[29719]: validation result i=
s
>> BOGUS
>> Sat Apr 19 09:37:41 2014 daemon.info dnsmasq[29719]: reply
>> saml-bac.onefiserv.com is <CNAME>
>> Sat Apr 19 09:37:41 2014 daemon.info dnsmasq[29719]: reply
>> saml-bac.gslb.onefiserv.com is 64.128.98.58
>>
>>
>> Sat Apr 19 09:38:04 2014 daemon.info dnsmasq[29719]: query[A]
>> sso-fi.bankofamerica.com from 172.30.42.99
>> Sat Apr 19 09:38:04 2014 daemon.info dnsmasq[29719]: forwarded
>> sso-fi.bankofamerica.com to 8.8.4.4
>> Sat Apr 19 09:38:04 2014 daemon.info dnsmasq[29719]: forwarded
>> sso-fi.bankofamerica.com to 8.8.8.8
>> Sat Apr 19 09:38:04 2014 daemon.info dnsmasq[29719]: dnssec-query[DS]
>> sso-fi.bankofamerica.com to 8.8.8.8
>> Sat Apr 19 09:38:05 2014 daemon.info dnsmasq[29719]: query[A]
>> sso-fi.bankofamerica.com from 172.30.42.99
>> Sat Apr 19 09:38:05 2014 daemon.info dnsmasq[29719]: dnssec retry to 8.8=
.8.8
>> Sat Apr 19 09:38:06 2014 daemon.info dnsmasq[29719]: reply
>> sso-fi.bankofamerica.com is BOGUS DS
>> Sat Apr 19 09:38:06 2014 daemon.info dnsmasq[29719]: validation result i=
s
>> BOGUS
>> Sat Apr 19 09:38:06 2014 daemon.info dnsmasq[29719]: reply
>> sso-fi.bankofamerica.com is <CNAME>
>> Sat Apr 19 09:38:06 2014 daemon.info dnsmasq[29719]: reply
>> saml-bac.onefiserv.com is 64.128.98.58
>>
>> _______________________________________________
>> Cerowrt-devel mailing list
>> Cerowrt-devel@lists.bufferbloat.net
>> https://lists.bufferbloat.net/listinfo/cerowrt-devel
>>
>
>
>
> --
> Dave T=C3=A4ht
>
> NSFW: https://w2.eff.org/Censorship/Internet_censorship_bills/russell_029=
6_indecent.article



--=20
Dave T=C3=A4ht

NSFW: https://w2.eff.org/Censorship/Internet_censorship_bills/russell_0296_=
indecent.article