[RESOLVED] Re: TXT with dot in NAME for ACME via dynamic update (Axel Rau)

Axel Rau Axel.Rau at chaos1.de
Sat Mar 14 20:39:07 UTC 2020



> Am 14.03.2020 um 19:21 schrieb Timothe Litt <litt at acm.org>:
> 
> dig _acme-challenge.imap.lrau.net.
> 
> is missing a record type.  The default is A.
> 
> 
> dig _acme-challenge.imap.lrau.net. txt
> 
> will likely give you better results
> 
Natural. (-;

It seems to work:

;; ANSWER SECTION:
_acme-challenge.imap.lrau.net. 3600 IN	TXT	"mAtCUMOhsZiajcz5v0ae37-8VRlXFZEyd9csm6ARJYQ"
_acme-challenge.imap.lrau.net. 3600 IN	TXT	"tR0VhMRfb4v5WsctEgoD3aWNRJ73n2wqn9hlTPE9pA0"

Here, I see, what me prevented to run my challenge successfully.
LEs boulder server didn’t like more than 1 RR in the RRSET.
Using 'replace‘ instead of 'add‘ in dnspython update.Update solves my problem.

I was misdirected by update: 0 here:

Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id:  35882
;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1

Thanks a lot, Chuck and Timothe for your answers,
Axel
---
PGP-Key: CDE74120  ☀  computing @ chaos claudius

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 901 bytes
Desc: Message signed with OpenPGP
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20200314/87d9f583/attachment.bin>


More information about the bind-users mailing list