1.1.1.1 always randomized the capitalization in queries to authoritative servers, in line with draft-vixie-dnsext-dns0x20-00. As far as I know, it’s the default behavior of Knot Resolver, though it can be deactivated by the workarounds module when necessary.
Of late, though, all the queries to all my authoritative servers are in lowercase.
$ dig +short qname.lua.mattnordhoff.net txt @one.one.one.one
qnameqnameqnameqnameqnameqnameqnameqnameqnameqnameqname.lua-e-g.mn9.us.
"qnameqnameqnameqnameqnameqnameqnameqnameqnameqnameqname.lua-e-g.mn9.us"
(It’s a Lua record that reflects the query name.)
Can I ask what changed? Is it detecting a problem with my nameservers, Knot and PowerDNS? Did you turn it off globally? If so, why? Too many problems?
(If it’s the CommunityDNS lowercase TCP thing, they fixed it a few days ago.)
I’m partly asking because I think random capitalization is cool, even though whether it’s a good idea is debatable. But I’d also like to know if there’s a widespread problem with it.