zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-05-14 08:37:00 +02:00
Code Issues Projects Releases Packages Wiki Activity

Housekeeping

Browse source
This commit is contained in:
Pinga 2025-02-27 13:17:27 +02:00
parent a36fb6a908
commit 35ff83ce3e
3 changed files with 148 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

8
automation/backup-upload.php
View file

@ -43,13 +43,13 @@ switch ($storageType) {
$sftpSettings['host'], $sftpSettings['host'],
$sftpSettings['username'], $sftpSettings['username'],
$sftpSettings['password'], $sftpSettings['password'],
$sftpSettings['privateKey'], $sftpSettings['privateKey'], // Set to null in config if not using SSH key
$sftpSettings['passphrase'], $sftpSettings['passphrase'], // Set to null in config if not using SSH key
$sftpSettings['port'], $sftpSettings['port'],
$sftpSettings['useAgent'], $sftpSettings['useAgent'], // Set to false in config if not using SSH key
$sftpSettings['timeout'], $sftpSettings['timeout'],
$sftpSettings['maxTries'], $sftpSettings['maxTries'],
$sftpSettings['fingerprint'] $sftpSettings['fingerprint'] // Set to null in config if not using SSH key
); );
$visibilityConverter = PortableVisibilityConverter::fromArray([ $visibilityConverter = PortableVisibilityConverter::fromArray([

2
automation/backup.json.dist
View file

@ -12,7 +12,7 @@
"source": { "source": {
"type": "mysqldump", "type": "mysqldump",
"options": { "options": {
"databases": "registry registryAudit registryTransaction", "databases": "registry,registryAudit,registryTransaction",
"user": "your_username", "user": "your_username",
"password": "your_password" "password": "your_password"
} }

144
docs/configuration.md
View file

@ -174,7 +174,7 @@ This will initialize and configure the audit trail functionality. This process e
To set up backups in Namingo: To set up backups in Namingo:
1. Rename `/opt/registry/automation/backup.json.dist` and `/opt/registry/automation/backup-upload.json.dist` to `backup.json` and `backup-upload.json`, respectively. Edit both files to include the correct database and other required details. 1. Rename `/opt/registry/automation/backup.json.dist` and `/opt/registry/automation/backup-upload.json.dist` to `backup.json` and `backup-upload.json`, respectively. Edit both files to include the correct database and other required details. If using SFTP and just username and password, make sure you check `backup_upload.php` for which values you need to set to `null` in `backup-upload.json`.
2. Enable the backup functionality in `cron.php` or `cron_config.php` and make sure you follow the instructions in section **1.4.9. Running the Automation System** to activate the automation system on your server. 2. Enable the backup functionality in `cron.php` or `cron_config.php` and make sure you follow the instructions in section **1.4.9. Running the Automation System** to activate the automation system on your server.
@ -625,6 +625,77 @@ Configure the `Zone Writer` in Registry Automation and run it manually the first
php /opt/registry/automation/write-zone.php php /opt/registry/automation/write-zone.php
``` ```
#### Logging:
Place the contents below at `/etc/bind/named.conf.default-logging` and include the file in `/etc/bind/named.conf`:
```bash
logging {
// General logs (startup, shutdown, errors)
channel "misc" {
file "/var/log/named/misc.log" versions 10 size 10m;
print-time YES;
print-severity YES;
print-category YES;
};
// Query logs (log every DNS query)
channel "query" {
file "/var/log/named/query.log" versions 20 size 5m;
print-time YES;
print-severity NO;
print-category NO;
};
// Lame server logs (misconfigured DNS servers)
channel "lame" {
file "/var/log/named/lamers.log" versions 3 size 5m;
print-time YES;
print-severity YES;
severity info;
};
// Security logs (e.g., unauthorized query attempts)
channel "security" {
file "/var/log/named/security.log" versions 5 size 10m;
print-time YES;
print-severity YES;
severity dynamic;
};
// DNS updates (useful for dynamic zones)
channel "update" {
file "/var/log/named/update.log" versions 3 size 5m;
print-time YES;
print-severity YES;
};
// Resolver logs (useful for debugging recursive queries)
channel "resolver" {
file "/var/log/named/resolver.log" versions 5 size 5m;
print-time YES;
print-severity YES;
};
// Zone transfer logs (incoming & outgoing transfers)
channel "xfer" {
file "/var/log/named/xfer.log" versions 5 size 5m;
print-time YES;
print-severity YES;
};
// Assign categories to log files
category "default" { "misc"; };
category "queries" { "query"; };
category "lame-servers" { "lame"; };
category "security" { "security"; };
category "update" { "update"; };
category "resolver" { "resolver"; };
category "xfer-in" { "xfer"; };
category "xfer-out" { "xfer"; };
};
```
#### Check BIND9 Configuration: #### Check BIND9 Configuration:
```bash ```bash
@ -853,6 +924,77 @@ chown bind:bind /var/cache/bind/zones
chmod 755 /var/cache/bind/zones chmod 755 /var/cache/bind/zones
``` ```
#### Logging:
Place the contents below at `/etc/bind/named.conf.default-logging` and include the file in `/etc/bind/named.conf`:
```bash
logging {
// General logs (startup, shutdown, errors)
channel "misc" {
file "/var/log/named/misc.log" versions 10 size 10m;
print-time YES;
print-severity YES;
print-category YES;
};
// Query logs (log every DNS query)
channel "query" {
file "/var/log/named/query.log" versions 20 size 5m;
print-time YES;
print-severity NO;
print-category NO;
};
// Lame server logs (misconfigured DNS servers)
channel "lame" {
file "/var/log/named/lamers.log" versions 3 size 5m;
print-time YES;
print-severity YES;
severity info;
};
// Security logs (e.g., unauthorized query attempts)
channel "security" {
file "/var/log/named/security.log" versions 5 size 10m;
print-time YES;
print-severity YES;
severity dynamic;
};
// DNS updates (useful for dynamic zones)
channel "update" {
file "/var/log/named/update.log" versions 3 size 5m;
print-time YES;
print-severity YES;
};
// Resolver logs (useful for debugging recursive queries)
channel "resolver" {
file "/var/log/named/resolver.log" versions 5 size 5m;
print-time YES;
print-severity YES;
};
// Zone transfer logs (incoming & outgoing transfers)
channel "xfer" {
file "/var/log/named/xfer.log" versions 5 size 5m;
print-time YES;
print-severity YES;
};
// Assign categories to log files
category "default" { "misc"; };
category "queries" { "query"; };
category "lame-servers" { "lame"; };
category "security" { "security"; };
category "update" { "update"; };
category "resolver" { "resolver"; };
category "xfer-in" { "xfer"; };
category "xfer-out" { "xfer"; };
};
```
#### Restart BIND9 Service #### Restart BIND9 Service
After making these changes, restart the BIND9 service to apply them: After making these changes, restart the BIND9 service to apply them: