Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add DNSSEC test #15

Open
cybershambles opened this issue Apr 14, 2015 · 1 comment
Open

Add DNSSEC test #15

cybershambles opened this issue Apr 14, 2015 · 1 comment
Labels
enhancement

Comments

@cybershambles
Copy link

test@test-VirtualBox ~ $ dig +sigchase +trusted-key=./root.keys www.asio.gov.au. A |grep validation
;; RRSIG is missing for continue validation: FAILED

test@test-VirtualBox ~ $ dig +sigchase +trusted-key=./root.keys www.eurid.eu. A |grep validation
;; Ok this DNSKEY is a Trusted Key, DNSSEC validation is ok: SUCCESS

This works well.
@imrehg
Copy link
Owner

imrehg commented Apr 14, 2015

DNSSEC does not seem to be part of the standard SSLLabs Test API just yet (see their API docs). Thus would have to run an external command with extra files by the look of what you wrote.

It's a) a different layer than SSL, b) more advanced security and the currently monitored sites need a long way to get there if ever, c) would need external tools. These three parts make the changes very low priority for me. If you have any workable patch, I'm happy to test, though.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@imrehg @cybershambles