From b7f45f4e798fe836b1018d1f067f38f8f4c672f7 Mon Sep 17 00:00:00 2001 From: "David R. Andersen" Date: Fri, 21 Oct 2016 08:37:11 -0500 Subject: [PATCH] Remove TLSA record in www redirected domain This line is not required. --- management/dns_update.py | 1 - 1 file changed, 1 deletion(-) diff --git a/management/dns_update.py b/management/dns_update.py index a230f7b1..6f6655bc 100755 --- a/management/dns_update.py +++ b/management/dns_update.py @@ -227,7 +227,6 @@ def build_zone(domain, all_domains, additional_records, www_redirect_domains, en defaults += [ ("www", "A", env["PUBLIC_IP"], "Optional. Sets the IP address that www.%s resolves to so that the box can provide a redirect to the parent domain." % domain), ("www", "AAAA", env.get('PUBLIC_IPV6'), "Optional. Sets the IPv6 address that www.%s resolves to so that the box can provide a redirect to the parent domain." % domain), - ("_443._tcp.www", "TLSA", build_tlsa_record(env), "Optional. When DNSSEC is enabled, provides out-of-band HTTPS certificate validation for a few web clients that support it."), ] for qname, rtype, value, explanation in defaults: if value is None or value.strip() == "": continue # skip IPV6 if not set