Re: [Sks-devel] seeking peers for key.s-l-c.biz

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] seeking peers for key.s-l-c.biz

From:	Phil Pennock
Subject:	Re: [Sks-devel] seeking peers for key.s-l-c.biz
Date:	Mon, 25 Mar 2013 16:14:37 -0400

On 2013-03-25 at 12:50 +0100, Simon Lange wrote:
> I am looking for peers for a new SKS keyserver installation.
> 
> I am running SKS version 1.1.1, on keys.s-l-c.biz.
> This is a private machine.
> The server is physically located in Germany (EU).
> The machine has no IPv6 connectivity. Only IPv4-

Ah, I see you moved beyond
<http://dokuwiki.nausch.org/doku.php/centos:sks_c6> and perhaps found
<https://bitbucket.org/skskeyserver/sks-keyserver/wiki/Peering>.  :-)

> keys.slc.biz 11370 # Simon Lange <address@hidden> 0xBDD503BE

% host keys.slc.biz
keys.slc.biz has address 182.237.3.18
% host keys.s-l-c.biz
keys.s-l-c.biz has address 87.106.189.5

The domain slc.biz appears to be registered to ShaoHua Lv, Nanan,
Fujian, China.  They have a wildcard record in DNS:

 *.slc.biz.             3600    IN      A       182.237.3.18

I take it that you mean keys.s-l-c.biz for peering?

Your DNS SOA record has a typo in it, a trailing comma in the authoritative
server's hostname:

 s-l-c.biz. 300 IN SOA ns1.neonga.com,. hostmaster.s-l-c.biz. 2013032001 86400 
86400 604800 300

(Spotted while double-checking that you don't have a wildcard here too).

Also: is there a reason why you have a five minute TTL on the A record
for keys.s-l-c.biz?  If you're expecting to move address frequently,
this may be of interest to your potential peers.

> PS: there is no stable package 1.1.2/3/4 for debian squeeze. 1.1.1 is
> latest runs smoothly so far. ;) frontent (http://keys.s-l-c.biz) is
> proxied by lighttpd

Any idea why your setup claims, for a HEAD request, to be both lighttpd
and Apache, and loses the actual Server: header from sks_www itself?

----------------------------8< cut here >8------------------------------
% curl -I 'http://keys.s-l-c.biz:11371/pks/lookup?op=stats'
HTTP/1.1 200 OK
Via: 1.1 keys.s-l-c.biz:11371 (lighttpd)
Date: Mon, 25 Mar 2013 20:04:31 GMT
Server: Apache

----------------------------8< cut here >8------------------------------

Notably, when I do a GET instead of a HEAD, I see sks_www, so real
requests are fine.  It's just confusing when debugging.

  < Via: 1.1 keys.s-l-c.biz:11371 (lighttpd)
  < Server: sks_www/1.1.4

So, if you can confirm the correct hostname for peering, fix your DNS
and get back to us, I'm willing to peer.  :)

Thanks,
-Phil

[Prev in Thread]

Current Thread

[Next in Thread]

[Sks-devel] seeking peers for key.s-l-c.biz, Simon Lange, 2013/03/25
- Re: [Sks-devel] seeking peers for key.s-l-c.biz, Phil Pennock <=
- Message not available
  - Re: [Sks-devel] seeking peers for key.s-l-c.biz, Simon Lange, 2013/03/25

Prev by Date: [Sks-devel] seeking peers for key.s-l-c.biz
Next by Date: Re: [Sks-devel] seeking peers for key.s-l-c.biz
Previous by thread: [Sks-devel] seeking peers for key.s-l-c.biz
Next by thread: Re: [Sks-devel] seeking peers for key.s-l-c.biz
Index(es):
- Date
- Thread