happyDomain/checker-delegation
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
9 commits 1 branch 2 tags 151 KiB
Commit graph

3 commits

Author SHA1 Message Date
Pierre-Olivier Mercier
70c548284e feat: add NS TTL consistency and NS-target CNAME checks
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/tag Build is passing
Details 
Observe the NS RRset TTL from each parent server (ParentView.NSTTL) and
whether each NS target name is a CNAME alias (ChildNSView.CNAMETarget).
Two new rules judge the collected facts:

- delegation_ns_ttl_inconsistent: warns when parent servers disagree on
  the NS TTL, which indicates zone-data inconsistency between primaries.
- delegation_ns_is_cname: flags NS targets that are CNAME aliases as
  critical, per RFC 2181 §10.3 which forbids aliased NS names.
 2026-05-16 21:32:05 +08:00
Pierre-Olivier Mercier
a16e01e1d4 feat: add 6 new delegation rules for deeper validation 
Add rules for duplicate NS detection, cross-parent NS/DS consistency,
and DNSKEY integrity (KSK presence, protocol field, full KSK coverage by DS).
 2026-05-16 17:03:26 +08:00
Pierre-Olivier Mercier
7e0f29075e Initial commit 2026-04-26 19:46:01 +07:00