Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WHM native support for DNSSEC

Discussion in 'Bind / DNS / Nameserver Issues' started by _jman, Oct 5, 2017.

Tags:
  1. _jman

    _jman Active Member

    Joined:
    Jan 17, 2007
    Messages:
    34
    Likes Received:
    1
    Trophy Points:
    158
    CENTOS 7.4 kvm [vps] v66.0.24

    Wondering what the timeline might be for enabling native DNSSEC support in WHM.

    Have found some earlier threads talking about this, but nothing concrete.

    The main feature request thread
    DNSSEC
    is now over five years old and locked.

    Most answers talk about paying 3rd-party entities like PowerDNS, or the SSO or A-AST plugins, but since we can run Bind and be our own authoritative name servers, it doesn't make a lot of sense to pay someone else for functionality we should already have.

    FWIW, dig does show that I'm the authoritative server.

    While I manage around 100 domain names, most of them are just pointers to the dozen or so "real" ones. No clustering. Not large enough at this time to warrant separate boxes for Exim, Bind, Apache, etc.. Would imagine many of your customers fall into this category.

    Now, I am by no means a Bind expert, but thanks to cPanel's UI and underlying scripts, if you're careful and don't blindly break stuff it's pretty easily manageable. I am however leery of manually editing named.conf (you'll just overwrite it at the next update anyway). It's why I'm happy to pay you guys in the first place!

    So, any word on when we'll have native DNSSEC without additional 3rd-party pay plugins? The world's moving that way, and it seems cPanel would want to helping bring their customers in line with this important security overhaul.

    Thanks!
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
  3. _jman

    _jman Active Member

    Joined:
    Jan 17, 2007
    Messages:
    34
    Likes Received:
    1
    Trophy Points:
    158
    Hi, did you not see the part wherein I stated:

    ... it doesn't make a lot of sense to pay someone else for functionality we should already have.

    or
    ... any word on when we'll have native DNSSEC without additional 3rd-party pay plugins?

    Sorry to be brusque, but jeez, try replying to the question: When are you planning on implementing this natively?

    Thanks!
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    There's no need to install or pay for a third-party plugin to use PowerDNS or DNSSEC with cPanel. We provide it as an option when choosing which name server to enable on the server. That's what's referenced in the following two documentation links:

    How to Use cPanel's PowerDNS - cPanel Knowledge Base - cPanel Documentation
    Zone Editor - Documentation - cPanel Documentation

    Can you let us know if the options referenced in these documents are not available on your cPanel server, and if not, which version of cPanel is installed?

    Thank you.
     
Loading...

Share This Page