Configuring SSL for PowerDNS api

By default, the PowerDNS api comes with it’s own built in web server and API endpoint, which listens on port 8081. This is not a problem if you use it on your internal trusted network, or if you just need to get something up quickly and don’t care about security. But if you want to access the API for example over the internet, it’s a good idea to use a more secure solution.

This blog post will detail how to wrap your PowerDNS webserver/API with SSL using the Nginx web server as a reverse proxy.

Continue reading “Configuring SSL for PowerDNS api”

ICANN key rollover postponed

Yesterdag on october 11th 2017 would have been the date for a key rollover. ICANN, the organisation who controls the root of the DNSSEC trust tree, however postponed this key rollover until further notice. This is because they see that about 5% of all resolvers still use the old key, and doing a rollover breaks DNS resolving. Continue reading “ICANN key rollover postponed”