rndc stuff

Dockerfile

@@ -29,10 +29,12 @@ RUN \
   apt install -y netcat && \
   echo "include \"/etc/bind/local.key\";" >> /etc/bind/named.conf && \
   echo "include \"/etc/bind/dynamic/dynamic-zones.conf\";" >> /etc/bind/named.conf && \
+  echo "include \"/etc/bind/named.conf.rndc\";" >> /etc/bind/named.conf 
   echo "include \"/etc/bind/named.conf.logging\";" >> /etc/bind/named.conf 
 
 COPY ./server/ $APP_DIR
 COPY ./bind/named.conf.logging $BIND_DIR
+COPY ./bind/named.conf.rndc $BIND_DIR
 COPY ./bind/dynamic-zones.conf $DYN_ZONES_DIR
 COPY ./bind/dynamic.hottis.de $DYN_ZONES_DIR
 COPY ./yadynns.sh $APP_DIR

bind/named.conf.rndc

@@ -0,0 +1,10 @@
+key "rndc-key" {
+      algorithm hmac-md5;
+      secret "$RNDCKEY";
+};
+
+controls {
+      inet 127.0.0.1 port 953
+              allow { 127.0.0.1; } keys { "rndc-key"; };
+};
+

yadynns.sh

@@ -1,10 +1,15 @@
 #!/bin/bash
 
-echo "Generating key ..."
+echo "Generating tsig key ..."
 /usr/sbin/tsig-keygen local. > /etc/bind/local.key
 KEY=`cat /etc/bind/local.key | awk -F\" '/secret/ {print $2}'`
 sed -i "s,KEYVALUE,$KEY," /opt/app/yadyn
 
+echo "Generating rndc key ..."
+/usr/sbin/rndc-confgen > /etc/bind/rndc.conf
+KEY=`cat /etc/bind/rndc.conf | egrep "^\s*secret" | awk -F\" '{print $2}'`
+sed -i "s,RNDCKEY,$KEY," /etc/bind/named.conf.rndc
+
 echo "Starting named ..."
 /usr/sbin/named