Voters 13
-
-
-
-
-
-
J
-
D
- + 7 voters
-
J
-
J
-
D
-
M
-
J
-
B
13
TLSA/DANE automation with Let's Encrypt
- Open
- Subscribe
 |
Infra Blocks |
I would love to see TLSA/DANE automation for DNSSEC signed domains, and for automation of renewal of the TLSA record.
It would be preferred/required a DNSSEC signed domain to make use of DANE, i would suggest checking the DNSSEC signing validation external instead of local signed zone. Also mail_sni should be enabled.
I would also suggest that people can also disable DANE signing of their domain in directadmin.
More information:
forum.directadmin.com/threads/dnssec-tlsa-and-dane.60040/