We use cookies to ensure you get the best experience on our website
Inicio Explorar Axuda
Rexistro Iniciar sesión
0ct0pu5
/
desec-stack
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Explorar o código

feat(dnssec): ensure that zones are signed before sending out notifications

Peter Thomassen %!s(int64=8) %!d(string=hai) anos
pai
d454ac5a50
achega
1f2b90602a
Modificáronse 2 ficheiros con 2 adicións e 2 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 1 1
      api/desecapi/models.py
  2. 1 1
      nslord/cronhook/secure-zones.sh

+ 1 - 1
api/desecapi/models.py
Ver ficheiro 

@@ -109,7 +109,7 @@ class Domain(models.Model):
 
     def pdnsCreate(self):
 
         payload = {
 
             "name": self.name + ".",
 
-            "kind": "master",
 
+            "kind": "NATIVE",
 
             "masters": [],
 
             "nameservers": [
 
                 "ns1.desec.io.",

+ 1 - 1
nslord/cronhook/secure-zones.sh
Ver ficheiro 

@@ -11,7 +11,7 @@ for ZONE in `(echo "SELECT name FROM domains WHERE id NOT IN(SELECT domain_id FR
 
 
 	PARENT=${ZONE#*.}
 
 	SALT=`head -c300 /dev/urandom | sha512sum | cut -b 1-16`
 
-	pdnsutil secure-zone $ZONE && pdnsutil set-nsec3 $ZONE "1 0 10 $SALT" && pdnsutil increase-serial $ZONE
 
+	pdnsutil secure-zone $ZONE && pdnsutil set-nsec3 $ZONE "1 0 10 $SALT" && pdnsutil set-kind $ZONE MASTER
 
 
 	if [ "$PARENT" == "dedyn.io" ]; then
 
 		filename=/tmp/`date -Ins`_$ZONE.log

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5