←back to thread

macOS unable to open any non-Apple application

(twitter.com)
2603 points mattsolle | 1 comments | 12 Nov 20 21:00 UTC | HN request time: 0.238s | source
Show context
makz ◴[12 Nov 20 22:01 UTC] No.25075696[source]
They use a server like in one server like in single point of failure?!
replies(1): >>25077095 #
1. ben509 ◴[13 Nov 20 00:09 UTC] No.25077095[source]
dig ocsp.apple.com reports:

    ;; ANSWER SECTION:
    ocsp.apple.com.  3593 IN CNAME ocsp-lb.apple.com.akadns.net.
    ocsp-lb.apple.com.akadns.net. 53 IN CNAME ocsp.g.aaplimg.com.
    ocsp.g.aaplimg.com. 8 IN A 17.253.21.201
    ocsp.g.aaplimg.com. 8 IN A 17.253.119.201
"ocsp-lb.apple.com.akadns.net" is an entry indicating DNS based load balancing, done by Akamai.

Even with lots of redundancy, there are still lots of ways all that can fall over. You can have a batch of servers that soft-fail: they're not responding to real queries but the load balancer thinks they're healthy.