File tree Expand file tree Collapse file tree 1 file changed +15
-4
lines changed Expand file tree Collapse file tree 1 file changed +15
-4
lines changed Original file line number Diff line number Diff line change 4747 # Build the arguments
4848 gen_args=" --restrict"
4949 gen_args=" $gen_args --domain '$domain '"
50- gen_args=" $gen_args --bits 1024 "
50+ gen_args=" $gen_args --bits 2048 "
5151 gen_args=" $gen_args --selector=$selector "
5252 gen_args=" $gen_args --note='DKIM key for $hostname on $domain '"
5353
@@ -72,7 +72,7 @@ if test -f "nsupdate-$selector.conf"; then
7272else
7373
7474 # Build arguments list
75- ns_args=" -d $domain -F -M -u -T 86400 -o nsupdate-$selector .conf"
75+ ns_args=" -d $domain -C hostmaster@ $domain -N 127.1.1.53 - F -M -u -T 86400 -o nsupdate-$selector .conf"
7676
7777 if ! opendkim-genzone $ns_args ; then
7878 echo " DNS record generation failed, exiting"
8686 chown opendkim:opendkim " /etc/opendkim/keys/$selector .private"
8787 chmod 0600 " /etc/opendkim/keys/$selector .private"
8888
89- echo " Successfully created DNS record "
89+ echo " Successfully created DNS update file "
9090
9191fi
9292
@@ -98,5 +98,16 @@ if ! nsupdate "nsupdate-$selector.conf"; then
9898
9999fi
100100
101- echo " DNS update success."
101+ echo " DNS record created."
102+
103+ cd /etc/opendkim
104+
105+ # Enforce the use of the new key in the configuration
106+ last_year=$(( year - 1 ))
107+
108+ sed -i " s/$last_year /$year /g"
109+ sed -i " s/$last_year /$year /g"
110+
111+ systemctl restart opendkim
112+
102113exit $SUCCESS
You can’t perform that action at this time.
0 commit comments