[Pdns-users] TXT domain verification record (using @) issues

Nikolaos Milas nmilas at admin.noa.gr
Wed Jan 18 10:42:39 UTC 2017


I am using PowerDNS 4 with LDAP backend (simple mode).

I am facing the problem of having to define a "@" TXT record value for 
domain verification purposes.

I have defined such a record in this way:

    dn: dc=@,dc=noa.gr,ou=dns1,dc=noa,dc=gr
    objectClass: dNSDomain2
    objectClass: dNSDomain
    objectClass: domainRelatedObject
    objectClass: domain
    objectClass: top
    associatedDomain: @.noa.gr
    dc: @
    dNSTTL: 3600
    tXTRecord: "MS=ms14959969"

My dig or nslookup queries for @.noa.gr do not seem to work:

# dig '@.noa.gr' ANY
dig: couldn't get address for '.noa.gr': not found

...so I tried the following:


# dig '\@.noa.gr' ANY

; <<>> DiG 9.3.6-P1-RedHat-9.3.6-25.P1.el5_11.11 <<>> \@.noa.gr ANY
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62739
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 5

;\@.noa.gr.                     IN      ANY

\@.noa.gr.              3495    IN      TXT "MS=ms14959969"

noa.gr.                 3543    IN      NS      vdns.noa.gr.
noa.gr.                 3543    IN      NS      sns1.grnet.gr.
noa.gr.                 3543    IN      NS      dns2.noa.gr.
noa.gr.                 3543    IN      NS      sns0.grnet.gr.

sns0.grnet.gr.          3388    IN      A
sns0.grnet.gr.          31638   IN      AAAA 2001:648:2ffc:111::2
sns1.grnet.gr.          3197    IN      A
sns1.grnet.gr.          77018   IN      AAAA 2001:648:2ffc:112::2
vdns.noa.gr.            33      IN      AAAA 2001:648:2011:15::162

;; Query time: 5 msec
;; WHEN: Wed Jan 18 12:31:20 2017
;; MSG SIZE  rcvd: 250



    # dig noa.gr AXFR @ | grep ms14
    \@.noa.gr.   3600    IN   TXT   "MS=ms14959969"

But this does not seem to do the job. It seems that @ is different than \@

(The domain verification procedure fails as well.)

The questions:

1. What am I doing wrong in setting up this "@" record (over LDAP)?

2. Can you please suggest a solution?

Thanks a lot,

More information about the Pdns-users mailing list