Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.protocols.dns.bind > #15786
| Path | csiph.com!2.eu.feeder.erje.net!feeder.erje.net!news.etla.org!nntp-feed.chiark.greenend.org.uk!ewrotcd!usenet-its.stanford.edu!usenet.stanford.edu!not-for-mail |
|---|---|
| From | PGNet Dev <pgnet.dev@gmail.com> |
| Newsgroups | comp.protocols.dns.bind |
| Subject | Re: automating DS Record submit to parent with 'new' kasp/dnssec-policy support in bind? |
| Date | Wed, 27 May 2020 10:35:25 -0700 |
| Lines | 16 |
| Approved | bind-users@lists.isc.org |
| Message-ID | <mailman.449.1590600912.942.bind-users@lists.isc.org> (permalink) |
| References | <035aafab-7d58-12fa-7607-1f3634271fd3@gmail.com> <00A9E019-5C44-4FEE-8706-35AC8F4E7655@isc.org> <dec95a68-ded7-528c-656e-1d98070fac2c@gmail.com> |
| Reply-To | pgnet.dev@gmail.com |
| NNTP-Posting-Host | lists.isc.org |
| Mime-Version | 1.0 |
| Content-Type | text/plain; charset=utf-8 |
| Content-Transfer-Encoding | 8bit |
| X-Trace | usenet.stanford.edu 1590600933 7948 149.20.1.60 (27 May 2020 17:35:33 GMT) |
| X-Complaints-To | action@cs.stanford.edu |
| Cc | bind-users@lists.isc.org |
| To | Mark Andrews <marka@isc.org> |
| Return-Path | <pgnet.dev@gmail.com> |
| X-Original-To | bind-users@lists.isc.org |
| Delivered-To | bind-users@lists.isc.org |
| DKIM-Signature | v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=reply-to:subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=imUElGButH8waFklwvMuun/f+4QgGSn39vKwcWl5/vY=; b=IzttEuW8BABa6tBeKeA5QQpK/Ie6pFmNZpoPFio55xM2Mt8xwTyTbxvUb/XgRKfqyD yGQ/w4QHDsxv+DW/tfFFZvz0M6loUTaYpzbTN3CyCUSOqLyHBl4A20l/QxlCaOShnXWr nBuEPrLkI6ch51jgiWjnT57PGuaFudZrIgLVKvuYRnF41vFsIzFwg7s/46liw7mv1Lxo zmykjSlImjYXc1E+Tg9FKEgPsFBHILVELYR04OuXwVbSDK5kFcyweX5Ul09T1b4PAlam 6js6QoY9Ml92LSaj3kHAAEXV/KbMdT7m3Bqb87TCUq0NirXQO46rLt+NLKtfhKN6d/D2 CLUg== |
| X-Google-DKIM-Signature | v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:reply-to:subject:to:cc:references:from :message-id:date:user-agent:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=imUElGButH8waFklwvMuun/f+4QgGSn39vKwcWl5/vY=; b=UxjAQGftVanOzQPie6qq5breAwOvZqPfBxcCKy99LvwGcMW++UqKT2kFOciwxgPjeC QH5tbu/7CHeWxKmnPA262CeX+FQuc3/HFxZQxNtoAj6LrCqK2K1Sr6Hg/j2mskpk3G0F XjQAxw1fmh06xbUTkoAz2drcXnX1IRuNvT1omqxi2n2Y47XQo9RiU9Zq6DTPr0Ha0osp VFEdcH5QuD7UEbPh93nD2GOmmRTlURTgi8fNdblug8d4l0Pe0N9gjIOXcilH49OeWulD obJpLMi/Mf5+BWH16/9UDLe5xpBb1735K4GEt1Z+/yMUoMTqOAsA6n9HPU1PPCFN3ZvZ k+Ow== |
| X-Gm-Message-State | AOAM532dNfDRPNRCm9weShm4MfKnTMfWMwsH9H+U3JjdS4Q0oC14Ig6J EG01XXYi9PWXiWI/WGRMkNiKpy6N |
| X-Google-Smtp-Source | ABdhPJybOcV0xULb/UAlH6/3MzEV+E9MY/C7adXP+PaWzSTVpRW4AjuRPBUQ0Nfx7GZ5AY8HATOHBQ== |
| X-Received | by 2002:a17:902:aa4a:: with SMTP id c10mr7199557plr.0.1590600927799; Wed, 27 May 2020 10:35:27 -0700 (PDT) |
| User-Agent | Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.8.1 |
| In-Reply-To | <00A9E019-5C44-4FEE-8706-35AC8F4E7655@isc.org> |
| Content-Language | en-US |
| X-Spam-Status | No, score=-0.2 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM,RCVD_IN_DNSWL_NONE, SPF_HELO_NONE,SPF_PASS autolearn=disabled version=3.4.2 |
| X-Spam-Checker-Version | SpamAssassin 3.4.2 (2018-09-13) on mx.pao1.isc.org |
| X-BeenThere | bind-users@lists.isc.org |
| X-Mailman-Version | 2.1.29 |
| Precedence | list |
| List-Id | BIND Users Mailing List <bind-users.lists.isc.org> |
| List-Unsubscribe | <https://lists.isc.org/mailman/options/bind-users>, <mailto:bind-users-request@lists.isc.org?subject=unsubscribe> |
| List-Archive | <https://lists.isc.org/pipermail/bind-users/> |
| List-Post | <mailto:bind-users@lists.isc.org> |
| List-Help | <mailto:bind-users-request@lists.isc.org?subject=help> |
| List-Subscribe | <https://lists.isc.org/mailman/listinfo/bind-users>, <mailto:bind-users-request@lists.isc.org?subject=subscribe> |
| X-Mailman-Original-Message-ID | <dec95a68-ded7-528c-656e-1d98070fac2c@gmail.com> |
| X-Mailman-Original-References | <035aafab-7d58-12fa-7607-1f3634271fd3@gmail.com> <00A9E019-5C44-4FEE-8706-35AC8F4E7655@isc.org> |
| Xref | csiph.com comp.protocols.dns.bind:15786 |
Show key headers only | View raw
On 5/26/20 4:50 PM, Mark Andrews wrote: > This is where we need to get the registrars to follow standards. They are written > so everyone doesn’t have to cobble together ad-hoc solutions. Hourly scans of all > the DNSSEC delegations by the registrars would do. > > push solutions sounds reasonable. at very least, better than nothing. in the absence of a standards-based solution, any options for hooks in bind to external scripts, even if ad-hoc? e.g., "if when change in DS Record in local bind, then fire this external script which will manage the DS submit/withdraw via API to registrar" a completely de-coupled solution, independent of bind itself, is doable -- but again, ad-hoc, and seems a step backwards given the nice progress with dnssec-policy/kasp simplifications in recent versions. if that's all there is, know of any existing, proven ad-hoc solutions?
Back to comp.protocols.dns.bind | Previous | Next | Find similar | Unroll thread
Re: automating DS Record submit to parent with 'new' kasp/dnssec-policy support in bind? PGNet Dev <pgnet.dev@gmail.com> - 2020-05-27 10:35 -0700
csiph-web