danectl (security/danectl) Updated: 1 year, 3 months ago Add to my watchlist

DNSSEC DANE implementation manager

DNSSEC DANE implementation manager. DANE is "DNS-based Authentication of Named Entities". It means securely letting the world know in advance what your public encryption keys are by publishing them as DNS records (TLSA, SSHFP, OPENPGPKEY, SMIMEA) in your DNSSEC-enabled internet domain zone. This is the simplest and most secure way to let the world know what keys to expect when connecting to your servers. This can apply to TLS keys, SSH host keys, and OpenPGP and S/MIME keys. This makes it possible to prevent impersonation or man-in-the-middle attacks. It's mostly used with mail servers. Eventually, it could render certificate authorities unnecessary. DNSSEC has become very easy.

Version: 0.8.4 License: GPL-2+ GitHub
Maintainers macportsraf
Categories security
Homepage https://raf.org/danectl/
Platforms any
Variants
  • openpgpkey (Add OPENPGPKEY support for GnuPG keys)
  • smimea (Add SMIMEA support for S/MIME keys)
  • sshfp (Add SSHFP support for ssh servers)
  • tlsa (Add TLSA support for TLS servers)

"danectl" depends on

lib (1)
run (5)
build (1)

Ports that depend on "danectl"

No ports


Port Health:

Loading Port Health

Installations (30 days)

2

Requested Installations (30 days)

2