Commit d795a1ac authored by Elger Jonker's avatar Elger Jonker

[WIP]added dnssec scanner, trying it out now

parent b7da3865
This diff is collapsed.
......@@ -63,7 +63,6 @@ def compose_task(
log.info('Creating scan task for %s endpoints for %s urls for %s organizations.',
len(endpoints), len(urls), len(organizations))
# todo: this is a poor mans solution for queue randomization, will be implemented in the queue manager
# make sure we're dealing with a list for the coming random function
endpoints = list(endpoints)
......
......@@ -332,6 +332,10 @@ LOGGING = {
OUTPUT_DIR = os.environ.get('OUTPUT_DIR', os.path.abspath(os.path.dirname(__file__)) + '/')
VENDOR_DIR = os.environ.get('VENDOR_DIR', os.path.abspath(os.path.dirname(__file__) + '/../vendor/') + '/')
# the tools dir in this case are very small tools that build upon external dependencies, such as dnscheck.
# only use this if the vendor dir does not provide the needed command(s) in a simple way
TOOLS_DIR = os.environ.get('TOOLS_DIR', os.path.abspath(os.path.dirname(__file__) + '/../tools/') + '/')
# A number of tools and outputs are grouped to easier have access to all of them.
# Our vendor directory contains a number of small tools that are hard to install otherwise.
......@@ -396,6 +400,9 @@ TOOLS = {
'Darwin': VENDOR_DIR + 'cert-chain-resolver/cert-chain-resolver-darwin',
'Linux': VENDOR_DIR + 'cert-chain-resolver/cert-chain-resolver-linux',
}
},
'dnscheck': {
'executable': TOOLS_DIR + 'dnssec.pl'
}
}
......
......@@ -71,5 +71,8 @@ setup(
'failmap = failmap.manage:main',
],
},
scripts=[
'tools/dnssec.pl'
],
include_package_data=True,
)
#!/usr/bin/perl
#
# $Id$
require 5.008;
use warnings;
use strict;
use DNSCheck;
######################################################################
# configuration changes compared to examples/dnssec.pl:
# Use meaningful translated messages (localefile)
# Minimize the output: debug: 0
my $check = new DNSCheck({ interactive => 1, extras => { debug => 0 }, localefile => 'locale/en.yaml' });
die "usage: $0 zonename\n" unless ($ARGV[0]);
$check->dnssec->test($ARGV[0]);
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment