Yannik Sembritzki
Yannik Sembritzki
@lanl0rd Thanks to @sebres, we now also have a working fail2ban filter! :-) ``` [Definition] datepattern = ^time="%%Y-%%m-%%dT%%H:%%M:%%S(?:%%z)?"\s+ _acmedns_domain = acme-dns\.mydomain\.org __prefix_journal = \s*(?:\S+ \S+\[\d+\]: (?:time=\S+)?)? failregex = ^%(__prefix_journal)s\s*level=debug msg="Answering...
Actually, the proper source for the SOA record requirement is this: https://datatracker.ietf.org/doc/html/rfc2308#section-3 ("Name servers authoritative for a zone MUST include the SOA record of the zone in the authority section...
I reviewed your PR, LTGM.
@dkhughes You do not need to set both a NS record and A/CNAME record at your provider. The A/CNAME is ignored anyway, as it is resolved by your own NS....
@dkhughes Oh, now I got you. IIRC this would also be against a dns rfc. Is there anything in the docs that made you use this specific setup?
This is security by obscurity. I disagree with merging this PR as it provides no actual security and instead adds bloat.
@DavidWittman Hey David, I took the time to create a PR as approved by you earlier. It would be great if you could have a look at it :-)
Thanks, David, and best of luck to your family!
does `export $(/usr/bin/dbus-launch)` work with your shell?
I would also love to see this implemented, I'm currently using a custom filter to ban all invites which require authorization (i.e., not invites from our registrar which is whitelisted...