(2018-10-16)
Information.bind entry:In action:
Problem
What is CAA recordSolution
CAA record is a DNS record that indicates who is permitted to issue SSL certs for a domain.Information.bind entry:xdroop.com. IN CAA 128 issue "letsencrypt.org"
# dig @n1 caa xdroop.com; <<>> DiG 9.9.4-RedHat-9.9.4-61.el7_5.1 <<>> @n1 caa xdroop.com ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49189 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 3, ADDITIONAL: 4;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;xdroop.com. IN CAA;; ANSWER SECTION: xdroop.com. 900 IN CAA 128 issue "letsencrypt.org";; AUTHORITY SECTION: xdroop.com. 900 IN NS n2.gridway.net. xdroop.com. 900 IN NS n3.gridway.net. xdroop.com. 900 IN NS n1.gridway.net.;; ADDITIONAL SECTION: n1.gridway.net. 300 IN A 139.60.168.90 n2.gridway.net. 300 IN A 72.142.112.27 n3.gridway.net. 300 IN A 207.236.146.3;; Query time: 0 msec ;; SERVER: 139.60.168.90#53(139.60.168.90) ;; WHEN: Tue Oct 16 12:24:25 EDT 2018 ;; MSG SIZE rcvd: 183
no comments |
post comment
Virtual Dave Megaplex:
- Home Page
- This wiki's start page
- Send Feedback To Dave
Logged in Users: (0)
Recently Changed
FortiClient Error Codes- Scan For Newly Added Disk
- dhparams Generation
- SSL Certificate Bundles
- Seconds Since Epoch to Local Time
- ufw
- Grow A LVM Partition
- Creating Users
- whoami
- list databases
- DH Selection For IPsec VPNs
- 2023
- 2022
- 2019
- 2018
- 2017
- 2011
- 2010
- 2008
- 2001
- 2000
- 1999
- 1991
- Fire Eater
- Custom '77 Dodge Van
- Bone Shaker
- Batmobile
- Fire Eater Wanted
- dvr-scan
- Batmobiles Wanted
Editing: snipsnap-help, Image Macro(Et auditum est, et idcirco ego nunc simulare)
This is a collection of techical information, much of it learned the hard way. Consider it a lab book or a /info directory. I doubt much of it will be of use to anyone else.