Messages

1

General Discussion / Re: os-rfc2136 - documentation?

« on: June 30, 2020, 09:18:21 pm »

I fixed my local copy of pugins.inc.d/rfc2136.inc and it's now working for me with HMAC-SHA512.
The fix was to introduce $keyalgo variable hardcoded to "hmac-sha512" and to replace two key old format with one key new format generated key by tsig-keygen.

Is this plugin has an owner or at least a temporary caretaker, who is willing to add a dropdown menu "key algorithm" to services_rfc2136.php & services_rfc2136_edit.php? If yes, then rfc2136.inc could be easily modified to dynamically use whatever algorithm the user had chosen.

On a side note, I cannot find a crontab entry to check if ip has changed, let say every 1 hour.
Is it a bug or there is another mechanism to trigger the check?

2

General Discussion / Re: os-rfc2136 - documentation?

« on: June 25, 2020, 05:45:33 pm »

Of course it does not work. Why even suggesting to try?
For nsupdate from bind-utils package you have to either use option -y algorithm:keyname:keyvalue or -k keyfilename option. I.e.
$ nsupdate -y hmac-sha512:keyname:keyvalue

or

$ nsupdate -k Kkeyname.+165+0316.private

$ cat Kkeyname.+165+0316.private
Private-key-format: v1.3
Algorithm: 165 (HMAC_SHA512)
Key: keyvalue
Bits: AAA=

3

General Discussion / Re: os-rfc2136 - documentation?

« on: June 23, 2020, 09:05:48 pm »

There is no "Key algorithm" box. I need to put HMAC-SHA512.
Am I missing it (box) somehow, or  how should I proceed?