bundlewrap/bundles/bind/README.md at 8b296ba6db41a612ba4c26c4c355114bacdcf085 - cronekorkn/bundlewrap - Forgejo: Beyond coding. We Forge.

cronekorkn/bundlewrap

cronekorkn 8b296ba6db

wip

2023-08-01 17:13:41 +02:00

603 B

Raw Blame History

DNSSEC

https://wiki.debian.org/DNSSEC%20Howto%20for%20BIND%209.9+#The_signing_part https://blog.apnic.net/2021/11/02/dnssec-provisioning-automation-with-cds-cdnskey-in-the-real-world/ https://gist.github.com/wido/4c6288b2f5ba6d16fce37dca3fc2cb4a

import dns.dnssec
algorithm = dns.dnssec.RSASHA256

import cryptography
pk = cryptography.hazmat.primitives.asymmetric.rsa.generate_private_key(key_size=2048, public_exponent=65537)

Nomenclature

parent

DNSKEY: the public key

DS

sub

ZSK/KSK: https://www.cloudflare.com/de-de/dns/dnssec/how-dnssec-works/