coolaj86
/
acme.js-ARCHIVED
2
1
Fork 0
Code Issues 4 Pull Requests 3 Releases Activity

Complexity in dryrun for dns challenge #26

New Issue
Closed
opened 2019-07-08 10:02:56 +00:00 by Ghost · 2 comments
Ghost commented 2019-07-08 10:02:56 +00:00
Copy Link

Hi,

The dns challenge has a dry run that add's an unnecessary complexity to handle.

The dry run test is on different and random dns records, different to what letsencrypt require.

It would be great if the test can be done on the same (or at least on a fixed) dns row that letsencrypt required.

Would such a thing be possible to fix on your end?

Thanks

Hi, The dns challenge has a dry run that add's an unnecessary complexity to handle. The dry run test is on different and random dns records, different to what letsencrypt require. It would be great if the test can be done on the same (or at least on a fixed) dns row that letsencrypt required. Would such a thing be possible to fix on your end? Thanks
coolaj86 commented 2019-07-08 13:55:16 +00:00
Owner
Copy Link

Actually, it's important that it not be the same - otherwise you end up DNS cache poisoning yourself and the ACME challenges won't pass.

You can, however, turn the dry-run off completely.

I cleaned this all up when I created the browser port ( https://greenlock.domains/app/js/bluecrypt-acme.js ), however, I haven't ported it back to node yet (but I will, because ACME draft-18 requires some of the changes I made by November.

Actually, it's important that it *not* be the same - otherwise you end up DNS cache poisoning yourself and the ACME challenges won't pass. You can, however, turn the dry-run off completely. I cleaned this all up when I created the browser port ( https://greenlock.domains/app/js/bluecrypt-acme.js ), however, I haven't ported it back to node yet (but I will, because ACME draft-18 requires some of the changes I made by November.
Ghost commented 2019-07-08 14:03:46 +00:00
Author
Copy Link

Thank you for the answer.

Thank you for the answer.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
v3
v1
wip-v3
browser-v2
errors
v2
skip-valid-challenge
v3.0.10
v3.0.9
v3.0.8
v3.0.7
v3.0.6
v3.0.5
v3.0.4
v3.0.2
v3.0.1
v1.8.6
v1.8.5
v1.8.4
v1.8.2
v1.8.1
v1.8.0
v1.7.7
v1.7.6
v1.7.5
v1.7.3
v1.7.2
v1.7.1
v1.6.0
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.3.1
v1.3.0
v1.2.1
v1.2.0
v1.1.1
v1.1.0
v1.0.9
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v0.6.2
v0.6.1
v0.6.0
v0.0.2
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: coolaj86/acme.js-ARCHIVED#26
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?