diff --git a/instructions_for_dnssec.txt b/instructions_for_dnssec.txt new file mode 100644 index 0000000..2eb59bc --- /dev/null +++ b/instructions_for_dnssec.txt @@ -0,0 +1,31 @@ +* Add these lines to the zone definition in named.conf.local: + auto-dnssec maintain; + inline-signing yes; + +* Commit + Push + +* On bluemchen, pull it in with /root/bin/update_dns_bluemchen.sh + +* Generate the correct keys: + +cd /etc/bind/keys +dnssec-keygen -r/dev/urandom -a RSASHA256 -b 2048 -3 kde.eu +dnssec-keygen -r/dev/urandom -a RSASHA256 -b 2048 -3 -fk kde.eu +chown bind:bind * +NSECSEED=$(printf "%04x%04x" $RANDOM $RANDOM) +rndc signing -nsec3param 1 0 10 $NSECSEED kde.eu +/etc/init.d/bind9 reload + +* Bump serial and push and pull + +* (optional) check the complete zone. + +dig @127.0.0.1 +dnssec kde.eu axfr + +* (optional) display DNSKEY for upload to registrar + +dig @localhost dnskey kde.eu + +* (optional) display DS for upload to registrat + +dig @localhost dnskey kde.eu | dnssec-dsfromkey -f – kde.eu diff --git a/migration_to_cloudns.txt b/migration_to_cloudns.txt new file mode 100644 index 0000000..f216ec2 --- /dev/null +++ b/migration_to_cloudns.txt @@ -0,0 +1,2 @@ +qtcon.org.zone - T12262 - still searching for the right contact. + diff --git a/registrations b/registrations new file mode 100644 index 0000000..298cdd3 --- /dev/null +++ b/registrations @@ -0,0 +1,63 @@ +Domain Nameservers Registrar DNSSec & remarks +---------------------------------------------------------------------------------------------- +behindkde.com ClouDNS normal GoDaddy no dnssec, keys created, unable to set +behindkde.org ClouDNS normal GoDaddy no dnssec, keys created, unable to set +calligra.org ClouDNS normal GoDaddy no dnssec, keys created, unable to set +calligra-suite.org ClouDNS normal GoDaddy no dnssec, keys created, unable to set +commit-digest.com ClouDNS normal GoDaddy no dnssec +commit-digest.org ClouDNS normal GoDaddy no dnssec +desktopsummit.org ClouDNS normal GoDaddy no dnssec +digikam.org ClouDNS normal GoDaddy no dnssec +falkon.org ClouDNS normal GoDaddy no dnssec +frameworks.org ClouDNS normal GoDaddy no dnssec +gcompris.net OVH 3rd GoDaddy no dnssec, contact: Timothée Giet +inqlude.org ClouDNS normal GoDaddy no dnssec +k3b.org ClouDNS normal GoDaddy no dnssec +kaddressbook.com ClouDNS normal GoDaddy no dnssec +kaddressbook.org ClouDNS normal GoDaddy no dnssec +kde.be ClouDNS normal Schlund dnssec +kde.ca ClouDNS normal GoDaddy no dnssec +kde.eu ClouDNS normal Schlund dnssec +kde.gr.jp ClouDNS normal JP Domains no dnssec +kde.in ClouDNS normal Schlund no dnssec, keys created, unable to set +kde.it ClouDNS normal Schlund no dnssec, keys created, unable to set +kde.nl CloudFlare 3rd dnssec, contact: Tom Albers +kde.org ClouDNS ddos GoDaddy no dnssec +kde.org.pl ClouDNS normal Schlund dnssec +kde.ru ClouDNS normal 3rd no dnssec, contact: Alexander Potashev +kde-china.org ClouDNS normal 3rd no dnssec, contact: Xuetian Weng +kde-edu.org ClouDNS normal GoDaddy no dnssec +kdeedu.org ClouDNS normal GoDaddy no dnssec +kdeitalia.it ClouDNS normal Schlund no dnssec, keys created, unable to set +kdelibs.com ClouDNS normal Schlund dnssec +kdemail.net ClouDNS normal GoDaddy no dnssec +kdenews.org ClouDNS normal GoDaddy no dnssec +kdenlive.org ClouDNS normal GoDaddy no dnssec +kdepim.com ClouDNS normal GoDaddy no dnssec +kdepim.org ClouDNS normal GoDaddy no dnssec +kdetalk.net ClouDNS normal GoDaddy no dnssec +kdevelop.org ClouDNS normal GoDaddy no dnssec +kexi-project.org ClouDNS normal GoDaddy no dnssec +kirogi.org ClouDNS normal 3rd no dnssec, contact: Eike Hein +kmymoney.org ClouDNS normal GoDaddy no dnssec +koffice.org ClouDNS normal GoDaddy no dnssec +konqueror.com ClouDNS normal GoDaddy no dnssec +konqueror.org ClouDNS normal GoDaddy no dnssec +kontact.org ClouDNS normal GoDaddy no dnssec +korganizer.org ClouDNS normal GoDaddy no dnssec +kphotoalbum.org ClouDNS normal GoDaddy no dnssec +krita.org CloudFlare GoDaddy dnssec +krusader.org ClouDNS normal GoDaddy no dnssec +kstuff.org ClouDNS normal GoDaddy no dnssec +local-kde.org ClouDNS geoip GoDaddy no dnssec possible @ GoDaddy +mauikit.org ClouDNS normal GoDaddy no dnssec +openraster.org ClouDNS normal GoDaddy no dnssec +planetkde.org ClouDNS normal GoDaddy no dnssec +plasma-active.org ClouDNS normal GoDaddy no dnssec +plasma-desktop.org GoDaddy GoDaddy no dnssec +plasma-mobile.org ClouDNS normal GoDaddy no dnssec +qtcon.org ByteMark Unknown no dnssec, contact: unknown +skrooge.org ClouDNS normal GoDaddy no dnssec +wiki2learn.org CloudFlare 3rd GoDaddy no dnssec, contact: unknown +wikifm.org CloudFlare 3rd GoDaddy no dnssec, contact: unknown +wikitolearn.org CloudFlare 3rd GoDaddy no dnssec, contact: unknown