1 1.1 christos #!/usr/bin/python 2 1.1 christos ''' 3 1.1 christos dnssec-valid.py: DNSSEC validation 4 1.1 christos 5 1.1 christos Authors: Zdenek Vasicek (vasicek AT fit.vutbr.cz) 6 1.1 christos Marek Vavrusa (xvavru00 AT stud.fit.vutbr.cz) 7 1.1 christos 8 1.1 christos Copyright (c) 2008. All rights reserved. 9 1.1 christos 10 1.1 christos This software is open source. 11 1.1 christos 12 1.1 christos Redistribution and use in source and binary forms, with or without 13 1.1 christos modification, are permitted provided that the following conditions 14 1.1 christos are met: 15 1.1 christos 16 1.1 christos Redistributions of source code must retain the above copyright notice, 17 1.1 christos this list of conditions and the following disclaimer. 18 1.1 christos 19 1.1 christos Redistributions in binary form must reproduce the above copyright notice, 20 1.1 christos this list of conditions and the following disclaimer in the documentation 21 1.1 christos and/or other materials provided with the distribution. 22 1.1 christos 23 1.1 christos THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS 24 1.1 christos "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 25 1.1 christos TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 26 1.1 christos PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE 27 1.1 christos LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 28 1.1 christos CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 29 1.1 christos SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 30 1.1 christos INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 31 1.1 christos CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 32 1.1 christos ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 33 1.1 christos POSSIBILITY OF SUCH DAMAGE. 34 1.1 christos ''' 35 1.1 christos from __future__ import print_function 36 1.1 christos import os 37 1.1 christos from unbound import ub_ctx,RR_TYPE_A,RR_CLASS_IN 38 1.1 christos 39 1.1 christos ctx = ub_ctx() 40 1.1 christos ctx.resolvconf("/etc/resolv.conf") 41 1.1 christos 42 1.1 christos fw = open("dnssec-valid.txt","wb") 43 1.1 christos ctx.debugout(fw) 44 1.1 christos ctx.debuglevel(2) 45 1.1 christos 46 1.1 christos if os.path.isfile("keys"): 47 1.1 christos ctx.add_ta_file("keys") #read public keys for DNSSEC verification 48 1.1 christos 49 1.1 christos status, result = ctx.resolve("www.nic.cz", RR_TYPE_A, RR_CLASS_IN) 50 1.1 christos if status == 0 and result.havedata: 51 1.1 christos 52 1.1 christos print("Result:", sorted(result.data.address_list)) 53 1.1 christos 54 1.1 christos if result.secure: 55 1.1 christos print("Result is secure") 56 1.1 christos elif result.bogus: 57 1.1 christos print("Result is bogus") 58 1.1 christos else: 59 1.1 christos print("Result is insecure") 60 1.1 christos 61
Indexes created Tue Mar 03 05:31:39 UTC 2026