-
**Note:** This bug probably would be fixed, and DANE Survey bot would rate TLSA records correct, if Virtualmin was to configure BIND settings to have BIND do fully automatic DNSSEC record generation, …
-
It would be nice if certbot could update those records after the challenge, as it's already using cloudflare API to add records anyway.
Wikipedia: https://en.wikipedia.org/wiki/DNS-based_Authentica…
-
http://www.root.cz/clanky/bezpecnejsi-predavani-posty-s-tlsa-zaznamy/
-
## What would you like to have changed?
DANE (DNS-based Authentication of Named Entities) is a protocol that allows X.509 certificates to be bound to DNS names using Domain Name System Security Exten…
-
Earlier this week, somebody asked about enabling DANE on our mail-system.
When I looked into it more closely today, I realized that a new TLSA records type is needed for that- and that Nictool does…
-
Would be nice to be able to check for DNSSEC and TLSA record suport.
See Swede for a tool that can do TLSA checking, however it dosen't do starttls:
https://github.com/pieterlexis/swede/
-
The TLSA specification is not finished yet; make sure we match the current spec or make sure we have a damned good excuse not to.
http://datatracker.ietf.org/doc/draft-ietf-dane-protocol/
-
I was wondering if it's possible to also update `TLSA` records after a certificate is fetched?
-
| SYSTEM INFORMATION||
|----------------------|---------------------------|
| OS type and version | Ubuntu Linux 22.04.3 |
| Webmin version | 2.105 |
| Usermin version …
-
ZNC should try to authenticate certificates using DANE when connecting to TLS servers.
[DANE](https://en.wikipedia.org/wiki/DNS-based_Authentication_of_Named_Entities) is a protocol which replaces or…