gpg 2.1.15, *no* keyservers found for submit/recv, "DNS query returned an error or no records: No such domain (nxdomain)"
kristian.fiskerstrand at sumptuouscapital.com
Thu Oct 13 00:07:07 CEST 2016
[Sent from my iPad, as it is not a secured device there are no cryptographic keys on this device, meaning this message is sent without an OpenPGP signature. In general you should *not* rely on any information sent over such an unsecure channel, if you find any information controversial or un-expected send a response and request a signed confirmation]
> Kristian, are you expecting the SRV records to be published at this
> point in the DNS?
Well, seems SRV records are causing more issues than they are useful. They only ever make sense for the geographical sub-pools in order to distributed the traffic using weights there, for the rest of the pools they are a noop since allowing specific ports etc is a bad idea overall.
This is further complicated by gnupg 2.1 using _hkp , whereby the consensus in previous implementation has been _pgpkey-http._tcp. So where SRV is implementere it is using the original identifier.
Not having SRV should certainly not result in failure of operation when A and AAAA records are returned though..
More information about the Gnupg-devel