CA DOIT NIQUER

j'en ai rien a pe'ter

@               CAA 128 issue "letsencrypt.org"
@               CAA 128 iodef "mailto:EMAIL1"
@               CAA 128 iodef "mailto:EMAIL2"

et oui c'est bien le flag 128 qui donne 1 sur l'octet. Faite vous plaisir.

DNS Certification Authority Authorization (CAA) Resource Record https://tools.ietf.org/html/rfc6844#section-3 https://tools.ietf.org/html/rfc6844#section-5.1.1

DNS Certification Authority Authorization https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization

Certificate Authority Authorization (CAA) https://letsencrypt.org/docs/caa/ https://letsencrypt.org/repository/

How to Manage CAA Records https://www.digitalocean.com/docs/networking/dns/how-to/caa/

CAA Record Helper https://sslmate.com/caa/

CAA Setup for Let’s Encrypt https://community.letsencrypt.org/t/caa-setup-for-lets-encrypt/9893/20

CAA Mandated by CA/Browser Forum https://blog.qualys.com/ssllabs/2017/03/13/caa-mandated-by-cabrowser-forum

How to Edit a Domain’s DNS CAA RR to Get DigiCert Certificate Brands https://www.digicert.com/ssl-support/edit-domains-dns-caa-rr.htm

HPKP is deprecated. What now? https://ordina-jworks.github.io/security/2018/02/12/HPKP-deprecated-what-now.html


Nethence | Pub | Lab | Pbraun | SNE Russia | xhtml