merged with dkim
This commit is contained in:
@@ -233,41 +233,54 @@ function createDomainZone($domain_id, $froxlorhostname = false, $isMainButSubTo
|
||||
if (Settings::Get('dkim.use_dkim') == '1') {
|
||||
$dkim_entries = generateDkimEntries($domain);
|
||||
}
|
||||
if ($domain['isemaildomain'] == '1') {
|
||||
#DKIM AND DMARC
|
||||
$zonerecords[] = new DnsEntry('mx._domainkey', 'TXT', '("v=DKIM1; k=rsa;"
|
||||
"p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyk6+Y5RkqqGeTxWmULWE"
|
||||
"6Z+6SA9M/ccJW9cVhjKLbrGOc3/i0lTvIY1KqNGxvcqZEFyVJJsXL6dnWIcmYY01"
|
||||
"GIeVL0nAxjLenW3NKFn+bpTmIiHYEegti4R5Il5NRm8o9g41pYqf3yVfqHKr8zNj"
|
||||
"LnnxBySTX2HpBgTtIZmK13IIbdeeE02aJi5g9AjxpkDak6iv8/kIOVaIgvFKSrSJ"
|
||||
"E6XZs2ap+RxYLxhDegIwevEFIUUqKYKxwFBx1ELRbvRkxZknH3PdWE9IJqGRxi02"
|
||||
"gvGhqjXP3JykumRBC47OHeufAeNsx5xy6tsetTq1rOPvMOCeBq1hQWKNUowTMP+/"
|
||||
"CQIDAQAB"
|
||||
)');
|
||||
|
||||
$zonerecords[] = new DnsEntry('_dmarc', 'TXT', encloseTXTContent('v=DMARC1; p=reject; rua=mailto:nyvpxtul@ag.dmarcian-eu.com; fo=1; adkim=r; aspf=r; pct=100; rf=afrf; ri=86400;'));
|
||||
}
|
||||
foreach ($required_entries as $type => $records) {
|
||||
if ($type == 'TXT') {
|
||||
foreach ($records as $record) {
|
||||
if ($record == '@SPF@') {
|
||||
$txt_content = Settings::Get('spf.spf_entry');
|
||||
$zonerecords[] = new DnsEntry('@', 'TXT', encloseTXTContent($txt_content));
|
||||
} elseif ($record == 'dkim_' . $domain['dkim_id'] . '._domainkey' && ! empty($dkim_entries)) {
|
||||
// check for multiline entry
|
||||
$multiline = false;
|
||||
if (substr($dkim_entries[0], 0, 1) == '(') {
|
||||
$multiline = true;
|
||||
}
|
||||
$zonerecords[] = new DnsEntry($record, 'TXT', encloseTXTContent($dkim_entries[0], $multiline));
|
||||
} elseif ($record == '_adsp._domainkey' && ! empty($dkim_entries) && isset($dkim_entries[1])) {
|
||||
$zonerecords[] = new DnsEntry($record, 'TXT', encloseTXTContent($dkim_entries[1]));
|
||||
}
|
||||
if ($type == 'TXT') {
|
||||
foreach ($records as $record) {
|
||||
if ($record == '@SPF@') {
|
||||
$txt_content = Settings::Get('spf.spf_entry');
|
||||
$zonerecords[] = new DnsEntry('@', 'TXT', encloseTXTContent($txt_content));
|
||||
} elseif ($record == 'dkim_' . $domain['dkim_id'] . '._domainkey' && ! empty($dkim_entries)) {
|
||||
// check for multiline entry
|
||||
$multiline = false;
|
||||
if (substr($dkim_entries[0], 0, 1) == '(') {
|
||||
$multiline = true;
|
||||
}
|
||||
$zonerecords[] = new DnsEntry($record, 'TXT', encloseTXTContent($dkim_entries[0], $multiline));
|
||||
} elseif ($record == '_adsp._domainkey' && ! empty($dkim_entries) && isset($dkim_entries[1])) {
|
||||
$zonerecords[] = new DnsEntry($record, 'TXT', encloseTXTContent($dkim_entries[1]));
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
if (empty($primary_ns)) {
|
||||
// TODO log error: no NS given, use system-hostname
|
||||
$primary_ns = Settings::Get('system.hostname');
|
||||
// TODO log error: no NS given, use system-hostname
|
||||
$primary_ns = Settings::Get('system.hostname');
|
||||
}
|
||||
|
||||
if (! $isMainButSubTo) {
|
||||
$date = date('Ymd');
|
||||
$domain['bindserial'] = (preg_match('/^' . $date . '/', $domain['bindserial']) ?
|
||||
$domain['bindserial'] + 1 :
|
||||
$date . '00');
|
||||
if (!$froxlorhostname) {
|
||||
$upd_stmt = Database::prepare("
|
||||
$date = date('Ymd');
|
||||
$domain['bindserial'] = (preg_match('/^' . $date . '/', $domain['bindserial']) ?
|
||||
$domain['bindserial'] + 1 :
|
||||
$date . '00');
|
||||
if (!$froxlorhostname) {
|
||||
$upd_stmt = Database::prepare("
|
||||
UPDATE `" . TABLE_PANEL_DOMAINS . "` SET
|
||||
`bindserial` = :serial
|
||||
WHERE `id` = :id
|
||||
|
||||
@@ -114,28 +114,29 @@ class bind extends DnsBase
|
||||
$bindconf_file .= ' type master;' . "\n";
|
||||
$bindconf_file .= ' file "' . makeCorrectFile(Settings::Get('system.bindconf_directory') . '/' . $domain['zonefile']) . '";' . "\n";
|
||||
$bindconf_file .= ' allow-query { any; };' . "\n";
|
||||
|
||||
if (count($this->_ns) > 0 || count($this->_axfr) > 0) {
|
||||
// open allow-transfer
|
||||
$bindconf_file .= ' allow-transfer {' . "\n";
|
||||
// put nameservers in allow-transfer
|
||||
if (count($this->_ns) > 0) {
|
||||
foreach ($this->_ns as $ns) {
|
||||
foreach ($ns["ips"] as $ip) {
|
||||
$bindconf_file .= ' ' . $ip . ";\n";
|
||||
}
|
||||
}
|
||||
}
|
||||
// AXFR server #100
|
||||
if (count($this->_axfr) > 0) {
|
||||
foreach ($this->_axfr as $axfrserver) {
|
||||
$bindconf_file .= ' ' . $axfrserver . ';' . "\n";
|
||||
}
|
||||
}
|
||||
// close allow-transfer
|
||||
$bindconf_file .= ' };' . "\n";
|
||||
}
|
||||
|
||||
# 2016-12-15 disabled now
|
||||
#if (count($this->_ns) > 0 || count($this->_axfr) > 0) {
|
||||
# // open allow-transfer
|
||||
# $bindconf_file .= ' allow-transfer {' . "\n";
|
||||
# // put nameservers in allow-transfer
|
||||
# if (count($this->_ns) > 0) {
|
||||
# foreach ($this->_ns as $ns) {
|
||||
# foreach ($ns["ips"] as $ip) {
|
||||
# $bindconf_file .= ' ' . $ip . ";\n";
|
||||
# }
|
||||
# }
|
||||
# }
|
||||
# // AXFR server #100
|
||||
# if (count($this->_axfr) > 0) {
|
||||
# foreach ($this->_axfr as $axfrserver) {
|
||||
# if (validate_ip($axfrserver, true) !== false) {
|
||||
# $bindconf_file .= ' ' . $axfrserver . ';' . "\n";
|
||||
# }
|
||||
# }
|
||||
# }
|
||||
# // close allow-transfer
|
||||
# $bindconf_file .= ' };' . "\n";
|
||||
#}
|
||||
$bindconf_file .= '};' . "\n";
|
||||
$bindconf_file .= "\n";
|
||||
|
||||
|
||||
Reference in New Issue
Block a user