gpg 2.1.15, no keyservers found for submit/recv, "DNS query returned an error or no records: No such domain (nxdomain)"

Thu Oct 13 00:07:07 CEST 2016

[Sent from my iPad, as it is not a secured device there are no cryptographic keys on this device, meaning this message is sent without an OpenPGP signature. In general you should *not* rely on any information sent over such an unsecure channel, if you find any information controversial or un-expected send a response and request a signed confirmation]

> 
> 
> Kristian, are you expecting the SRV records to be published at this
> point in the DNS?
> 

Well, seems SRV records are causing more issues than they are useful. They only ever make sense for the geographical sub-pools in order to distributed the traffic using weights there, for the rest of the pools they are a noop since allowing specific ports etc is a bad idea overall.

This is further complicated by gnupg 2.1 using _hkp , whereby the consensus in previous implementation has been _pgpkey-http._tcp. So where SRV is implementere it is using the original identifier.

Not having SRV should certainly not result in failure of operation when A and AAAA records are returned though.. 

gpg 2.1.15, *no* keyservers found for submit/recv, "DNS query returned an error or no records: No such domain (nxdomain)"

gpg 2.1.15, no keyservers found for submit/recv, "DNS query returned an error or no records: No such domain (nxdomain)"