voja at voja.de
Fri Jun 24 11:10:41 UTC 2011
that's what I want to do: pass DNSKEYs to my registrar.
But I also need to write a cron that can check the DS records at the
TLD zone and pass them to OpenDNSSEC. Or can OpenDNSSEC detect the DS
records on its own?
On Wed, 22 Jun 2011 23:03:49 +1200, Craig Whitmore
<lennon at orcon.net.nz> wrote:
> On 22/06/11 10:33 PM, "Volker Janzen" <voja at voja.de> wrote:
>>okay, but when I want a complete automation of the roll-over process,
>>I'd need something around OpenDNSSEC that manages:
>>- send DNSKEY data that is supplied by OpenDNSSEC to registrar
>>- wait the TTL of DS record to proceed
>>- send "ods-ksmutil key ds-seen -z <domain> -x ..." or all DS that are
>>visible in all e.g. .de authorative nameservers
>>- monitor if there are any problems
> I wrote my own...
> As how you send it is quite different in most situations. I would wrong
> your own (as I did) in perl.. Php/C or whatever you want to.
More information about the Opendnssec-user