Actually decided that I will give acme-dns a try: https://wiki.nethserver.org/doku.php?id=userguide:let_s_encrypt_acme-dns Will report how I go.
Regards Michael Knill From: Michael Knill <michael.kn...@ipcsolutions.com.au> Reply to: AstLinux List <astlinux-users@lists.sourceforge.net> Date: Saturday, 14 August 2021 at 12:29 pm To: AstLinux List <astlinux-users@lists.sourceforge.net> Subject: [Astlinux-users] Securing DNS API Keys when using ACME Hi Group I'm looking to move away from Wildcard SSL and move back to ACME Lets Encrypt to ensure a unique cert for all our systems. The reason is that we have built our new Mobile Softphone solution which is heavily reliant heavily on TLS for provisioning and SIP. As such, I want to set this up but I am concerned that if one of our systems was compromised (we have quite a few now), this will allow an attacker to do bad stuff to our DNS (currently GoDaddy). I understand that some DNS providers may be able to restrict what you can do with the API but just wondering if anyone has any better ideas? Regards Michael Knill Managing Director D: +61 2 6189 1360 P: +61 2 6140 4656 E: michael.kn...@ipcsolutions.com.au<mailto:michael.kn...@ipcsolutions.com.au> W: ipcsolutions.com.au<https://ipcsolutions.com.au/> [IPC Solutions] Smarter Business Communications
_______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to pay...@krisk.org.
