Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
api:bindacl [2017-09-29T02:34:26Z]
rouben Need bash for the ACL script to work. Pure /bin/sh doesn't understand the "bashisms" in the script
api:bindacl [2019-05-19T12:02:55Z]
fusl
Line 2: Line 2:
 Administrators running open Tier 1 and Tier 2 servers may wish to make use of the automatically-generated ACL file. This file is a BIND-formatted ACL which has listings for Tier 1 addresses, Tier 2 addresses, and whitelisted user IP addresses. Each list may be combined as desired to control access to your server. ACL lists have been supported since BIND 8.2.1. Administrators running open Tier 1 and Tier 2 servers may wish to make use of the automatically-generated ACL file. This file is a BIND-formatted ACL which has listings for Tier 1 addresses, Tier 2 addresses, and whitelisted user IP addresses. Each list may be combined as desired to control access to your server. ACL lists have been supported since BIND 8.2.1.
  
-If you are a Tier 1 or Tier 2 administrator and need access to this feature, please contact Shdwdrgn on the mailing list or IRC. Once you have access, you may log in to the [[https://web.archive.org/​web/​20160913110201/​http://​www.opennicproject.org/​members/|members page]] and you will be shown a wget command with your username and a hash key for authentication:​+If you are a Tier 1 or Tier 2 administrator and need access to this feature, please contact Shdwdrgn on the mailing list or IRC. Once you have access, you may log in to the [[https://members.opennic.org/​|members page]] and you will be shown a wget command with your username and a hash key for authentication:​
   wget -qO- "​https://​api.opennicproject.org/​acl/​bind/?​user=myUser&​auth=myHash"​   wget -qO- "​https://​api.opennicproject.org/​acl/​bind/?​user=myUser&​auth=myHash"​
   curl "​https://​api.opennicproject.org/​acl/​bind/?​user=myUser&​auth=myHash"​   curl "​https://​api.opennicproject.org/​acl/​bind/?​user=myUser&​auth=myHash"​
Line 24: Line 24:
  
 You will need to include this file in your named.conf configuration. Please note that you cannot put this in the options section of named.conf; if you do you will get an unknown option '​acl'​ error! Just place it anywhere outside of the named sections: You will need to include this file in your named.conf configuration. Please note that you cannot put this in the options section of named.conf; if you do you will get an unknown option '​acl'​ error! Just place it anywhere outside of the named sections:
-  include "/​etc/​bind/​OpenNIC.acl"​+  include "/​etc/​bind/​OpenNIC.acl"​;
  
 To include these ACLs in BIND9, you could add something like the following to the appropriate named.conf or view: To include these ACLs in BIND9, you could add something like the following to the appropriate named.conf or view:
  • /wiki/data/pages/api/bindacl.txt
  • Last modified: 15 months ago
  • by fusl