Clock off by a few hours: dnssec can fail on .org domains. ntp can't correct the clock, because it uses pool.ntp.*org* by default.
-
-
Replying to @RichFelker
@stribika@atrox_at Signing some things (like A records) is "insufficient" to gain all required security properties, but still not "wrong".1 reply 1 retweet 0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.