date:20231004

[Pdns-users] Adding multiple records to all zones at once

2023-10-04 Thread Andrea Biancalani via Pdns-users


Hello there,

I'm using latest PDNS server authoritative with MySQL backend and I want 
to autoadd 2 records (autodiscover/autoconfig CNAMEs) for each zone 
available in my db (that has not those records already set), to make it 
more clear:


Example.

   *zone1.tld*

   autodiscover.zone1.tld    CNAME autodiscover.outlook.com    3600
   autoconfig.zones1.tld    CNAME autoconfig.outlook.com    3600

   *zone2.tld*

   none


   *zone3.tld*

   none


   *zone4.tld*

   autodiscover.zone4.tld    CNAME autodiscover.outlook.com    3600
   autoconfig.zones4.tld    CNAME autoconfig.outlook.com    3600


   *zone5.tld*

   autodiscover.zone5.tld    CNAME autodiscover.outlook.com    3600
   autoconfig.zones5.tld    CNAME autoconfig.outlook.com    3600

Using powerdns db in a mysql shell I can prompt this command

   insert into records(domain_id,name,type,content,ttl) VALUES
   ("*2*","autoconfig.*zonename.tld*","CNAME","/**/","3600");
   insert into records(domain_id,name,type,content,ttl) VALUES
   ("*2*","autodiscover.*zonename.tld*","CNAME","/**/","3600");


but I need to extract all my zones within a script, than use a script to 
extract only null zone IDs, than push values inside db: not so practical.


Is there any way to avoid this and push those values inside not 
overwriting existing values (where already set)?


After this I'll schedule a "pdnsutil increase-serial" loop to increase 
SOA serials and propagate those differences to slaves with AXFR.


Any help is more than welcome!

Thanks all.


___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] PDNS repos request

2023-10-04 Thread Alex Pavlov via Pdns-users

So realistically the "Expanded Security Maintenance" is free for up to 5 
machines (on one ubuntu account) ! 

For more you need to pay…. or open another account.

I have seen even Ubuntu 12.x is still installed and working on some servers, 
some companies.

A lot of reasons why it happens, starting from “this old machine never touched 
for 10 years” to “the old administrator did it, and it still works”.

Please also keep in mind that one of the method of updating is rising versions 
on current server than migrate to newer kernel/server. You cut that way with 
deleting all files (not only the repo), just because your personal opinion 
tells you what is “realistic”… it is sad. 

Also is bad that you don’t have the “archives” for old files ☹ 

So you can delete from PDNS REPO server for disable automatic installation via 
“apt” for example, but you should leave the .deb packages for manual 
installation via dpkg ! 

 

Please, need help with files. Not the discussion of personal opinions.

BTW, just a  week ago the files and Repo for Ubuntu 16.x and 18.x were on your 
server ! 

If I know you delete all on weekend up to Ubuntu 20.x , I should download all 
files immediately 

 

Hope for understanding,

If somebody have the files, please share.

Alex.

 

From: Pdns-users  On Behalf Of Laura 
Smith via Pdns-users
Sent: Wednesday, October 04, 2023 5:44 PM
To: All about using and deploying powerdns 
Cc: Laura Smith 
Subject: Re: [Pdns-users] PDNS repos request

 

Well, it does clearly say  "Once a distribution version reaches end of its 
support (5 years for Ubuntu LTS releases, ~3 years for Debian releases, etc.) 
we will stop providing packages for it"

 

Ubuntu 18.04 is not current anymore.   LTS updates stopped earlier this year.  
The only people getting updates are those on "Expanded Security Maintenance" 
(i.e. paying Ubuntu on a contract, so realistically not many people).

 

I can totally understand 

 

Sent with Proton Mail   secure email. 

 

--- Original Message ---
On Tuesday, October 3rd, 2023 at 18:38, Alex Pavlov via Pdns-users 
mailto:pdns-users@mailman.powerdns.com> > 
wrote:




Hello To all PDNS admins,

 

Recently the  older PDNS repos were deleted from official PDNS Repo website. 

The distros for Ubuntu 16.x (Xenial) and 18.x (Bionic) were wiped out without 
any link to “archives” or “old releases”.

I can understand that releses like Ubuntu 16.x and older might be really 
outdated…. But for 18.x Ubuntu it is still so many people using it in 
production !

The options for compiling the required build or upgrade to newer Ubuntu kernel 
not always working in real world, where we have other packages/software running 

on same server or required libraries sometimes in conflict with other versions. 
– this is explanation to those who have “smart advices” install everyrthing on 
newer/supported server version.

 

Asking for help all PDNS society to share the deleted Ubuntu 18.x Bionic 
packages with me  (need all versions of pdns, pdns-backend, pdns-recursor, 
dnsdist, pdns-tools)

If somebody have it in files saved, share it please in any reasonable way like: 
FTP, MEGA downloads, or any other file sharing service.

 

Thank you,

Alex.

Contact to: ad...@livas.lv  

 

 

 

 

___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] SSHFP fingerprint size validation

2023-10-04 Thread atanas argirov via Pdns-users

Hello Peter,

> On 4 Oct 2023, at 07:42, Peter Thomassen  wrote:
> 
> Hi Atanas,
> 
> On 10/3/23 18:56, atanas argirov via Pdns-users wrote:
>> * testing malformed fingerprint size of (hash size +/- 2) is accepted with 
>> no complaints from both API and pdnsutil
>> My question is:
>> * is there any validation on the SSHFP fingerprint size based on the hash 
>> type?
> 
> Apparently not.
> 
>> * where this trailing zero comes from on hash size of +/- 1?
> Each hex digit is half a byte. I expect the pdns code to process bytes (not 
> half-bytes), and the missing bits are filled up with zero.
> 
> Avoiding this would require keeping extra state about the input length, but 
> there's probably not value in that if the operation is already bound to fail.


Thank you very much for the insights on the subject, appreciated. We will work 
around these limitations.

> 
> Cheers,
> Peter
> 
> -- 
> Like our community service? 
> Please consider donating at
> 
> https://desec.io/
> 
> deSEC e.V.
> Kyffhäuserstr. 5
> 10781 Berlin
> Germany
> 
> Vorstandsvorsitz: Nils Wisiol
> Registergericht: AG Berlin (Charlottenburg) VR 37525


Best,
Atanas

—

PGP: 0178 A605 C5E5 D207 E940  D109 BACE D962 BA03 327F


___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] PDNS repos request

2023-10-04 Thread Laura Smith via Pdns-users

Well, it does clearly say  "Once a distribution version reaches end of its 
support (5 years for Ubuntu LTS releases, ~3 years for Debian releases, etc.) 
we will stop providing packages for it"

Ubuntu 18.04 is not current anymore. LTS updates stopped earlier this year. The 
only people getting updates are those on "Expanded Security Maintenance" (i.e. 
paying Ubuntu on a contract, so realistically not many people).

I can totally understand

Sent with [Proton Mail](https://proton.me/) secure email.

--- Original Message ---
On Tuesday, October 3rd, 2023 at 18:38, Alex Pavlov via Pdns-users 
 wrote:

> Hello To all PDNS admins,
>
> Recently the older PDNS repos were deleted from official PDNS Repo website.
>
> The distros for Ubuntu 16.x (Xenial) and 18.x (Bionic) were wiped out without 
> any link to “archives” or “old releases”.
>
> I can understand that releses like Ubuntu 16.x and older might be really 
> outdated…. But for 18.x Ubuntu it is still so many people using it in 
> production !
>
> The options for compiling the required build or upgrade to newer Ubuntu 
> kernel not always working in real world, where we have other 
> packages/software running
>
> on same server or required libraries sometimes in conflict with other 
> versions. – this is explanation to those who have “smart advices” install 
> everyrthing on newer/supported server version.
>
> Asking for help all PDNS society to share the deleted Ubuntu 18.x Bionic 
> packages with me  (need all versions of pdns, pdns-backend, pdns-recursor, 
> dnsdist, pdns-tools)
>
> If somebody have it in files saved, share it please in any reasonable way 
> like: FTP, MEGA downloads, or any other file sharing service.
>
> Thank you,
>
> Alex.
>
> Contact to: ad...@livas.lv___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] PDNS repos request

2023-10-04 Thread Alex Pavlov via Pdns-users

Hello to everybody !

 

Does anybody can help me on the files below ?

Please, Ubuntu users or PDNS site administrator should have those file left on 
disk for Bionic 18.x.

 

Thank you, and hope for help…

Alex.

 

From: Alex  
Sent: Tuesday, October 03, 2023 8:38 PM
To: 'pdns-users@mailman.powerdns.com' 
Subject: PDNS repos request

 

Hello To all PDNS admins,

 

Recently the  older PDNS repos were deleted from official PDNS Repo website. 

The distros for Ubuntu 16.x (Xenial) and 18.x (Bionic) were wiped out without 
any link to “archives” or “old releases”.

I can understand that releses like Ubuntu 16.x and older might be really 
outdated…. But for 18.x Ubuntu it is still so many people using it in 
production !

The options for compiling the required build or upgrade to newer Ubuntu kernel 
not always working in real world, where we have other packages/software running 

on same server or required libraries sometimes in conflict with other versions. 
– this is explanation to those who have “smart advices” install everyrthing on 
newer/supported server version.

 

Asking for help all PDNS society to share the deleted Ubuntu 18.x Bionic 
packages with me  (need all versions of pdns, pdns-backend, pdns-recursor, 
dnsdist, pdns-tools)

If somebody have it in files saved, share it please in any reasonable way like: 
FTP, MEGA downloads, or any other file sharing service.

 

Thank you,

Alex.

Contact to: ad...@livas.lv  

 

 

 

___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

Re: [Pdns-users] SSHFP fingerprint size validation

2023-10-04 Thread Peter Thomassen via Pdns-users


Hi Atanas,

On 10/3/23 18:56, atanas argirov via Pdns-users wrote:

* testing malformed fingerprint size of (hash size +/- 2) is accepted with no 
complaints from both API and pdnsutil

My question is:

* is there any validation on the SSHFP fingerprint size based on the hash type?


Apparently not.


* where this trailing zero comes from on hash size of +/- 1?

Each hex digit is half a byte. I expect the pdns code to process bytes (not 
half-bytes), and the missing bits are filled up with zero.

Avoiding this would require keeping extra state about the input length, but 
there's probably not value in that if the operation is already bound to fail.

Cheers,
Peter

--
Like our community service? 
Please consider donating at

https://desec.io/

deSEC e.V.
Kyffhäuserstr. 5
10781 Berlin
Germany

Vorstandsvorsitz: Nils Wisiol
Registergericht: AG Berlin (Charlottenburg) VR 37525
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users

[Pdns-users] Adding multiple records to all zones at once

Re: [Pdns-users] PDNS repos request

Re: [Pdns-users] SSHFP fingerprint size validation

Re: [Pdns-users] PDNS repos request

Re: [Pdns-users] PDNS repos request

Re: [Pdns-users] SSHFP fingerprint size validation

6 matches

Site Navigation

Mail list logo

Footer information