webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-27 11:13:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

unbound: Allow list of INSECURE_ZONES being set in sysconfig

Browse Source 
A list of DNS zones can be given for which DNSSEC validation
will be disabled.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
This commit is contained in:
Michael Tremer
2016-11-04 17:43:05 +00:00
parent 3ddad158cd
commit 7ebc0a16e2
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/initscripts/init.d/unbound
View File

@@ -12,6 +12,7 @@ TEST_DOMAIN="ipfire.org"
# This domain will never validate # This domain will never validate
TEST_DOMAIN_FAIL="dnssec-failed.org" TEST_DOMAIN_FAIL="dnssec-failed.org"
INSECURE_ZONES=
USE_FORWARDERS=1 USE_FORWARDERS=1
# Cache any local zones for 60 seconds # Cache any local zones for 60 seconds
@@ -151,7 +152,7 @@ write_forward_conf() {
( (
config_header config_header
local insecure_zones local insecure_zones="${INSECURE_ZONES}"
local enabled zone server remark local enabled zone server remark
while IFS="," read -r enabled zone server remark; do while IFS="," read -r enabled zone server remark; do