cpu
commented
7 years ago @rolandshoemaker was this resolved by https://github.com/letsencrypt/boulder/pull/2716 ?
Open rolandshoemaker opened 7 years ago
cpu
commented
7 years ago @rolandshoemaker was this resolved by https://github.com/letsencrypt/boulder/pull/2716 ?
rolandshoemaker
commented
7 years ago This is related to the Present: xxx, Valid for issuance: xxx logging code in the VA.
aarongable
commented
1 year ago The metric set in https://github.com/letsencrypt/boulder/pull/2716 no longer exists, so we're no longer collecting this data, let alone logging it. This data is particularly of interest again as we work with the Princeton CITP on investigating the benefits of DNSSEC on the WebPKI.
Simplest solution is just to check if the resolver set the AD bit in the response in our
LookupCAAfunction.