Green: people who like one kind of DNS dance more likely to like other kinds too. (Also: even among CAA users, only 1/8 signed.) Yellow: if you’re going to deploy a new DNS-based signaling system, you need to use TXT.pic.twitter.com/ZSceABuBxH
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Two types of busted DNS: 1. CAA intolerance: DNS server drops CAA queries or replies with SERVFAIL or NOTIMP instead of a successful empty response. TXT record would solve this. 2. http://internal.example.com 's NS server is e.g. 10.1.1.10. TXT record wouldn't fix.
Currently, the BRs require fail close if the zone is DNSSEC-signed. This has been a huge fiasco, because no off-the-shelf DNS resolver makes it easy to tell if a zone is DNSSEC-signed. CAs came up with a variety of creative solutions.
Ah, gotcha. This makes perfect sense, thanks!
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.