You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Possible Misconfiguration The TTL for DMARC, SPF, and DKIM records is set to 1 second (ttl = 1). This is unusually low and might cause frequent DNS lookups, potentially affecting performance. Consider adjusting the TTL to a more typical value for these types of records.
Hardcoded IP The A records for autonomys.xyz are using hardcoded IP addresses. This could lead to issues if the IP addresses need to change. Consider using a more dynamic method of managing these IPs or ensure there is a process in place for updating them.
Adjust DMARC policy to reject to enhance email security
For the DMARC record, consider adjusting the policy from quarantine to reject to ensure stricter handling of emails that fail DMARC checks, enhancing security against email spoofing.
Why: Changing the DMARC policy to reject provides stricter handling of emails that fail DMARC checks, which significantly enhances email security against spoofing.
9
Enable proxying for applicable DNS records to enhance security
Consider setting the proxied attribute to true for the DNS records where it is applicable. This can help protect the backend services from direct exposure on the internet, reducing potential security risks.
Why: Enabling proxying can indeed enhance security by hiding the backend services from direct exposure on the internet. This is a significant improvement for security.
8
Performance
Increase TTL for SPF and DKIM records to reduce DNS lookup frequency
The TTL for the SPF and DKIM records is set to 1, which might be too low and can lead to frequent DNS lookups. Consider increasing the TTL to a higher value like 3600 to reduce DNS lookup frequency and potential latency.
Why: Increasing the TTL for SPF and DKIM records can reduce DNS lookup frequency and potential latency, which is a good performance optimization.
7
Best practice
Add a trailing dot to the CNAME record value to ensure proper DNS resolution
Ensure that the value for the CNAME record pointing to sites.framer.app is correctly configured to include a trailing dot if it is intended to be an absolute domain name, which is a common practice to avoid DNS resolution issues.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
github-actions
bot
added
enhancement
DaMandal0rian
force-pushed
the
dns-updates
branch
from
PR Type
Enhancement
Description
autonomys.xyzincluding A, CNAME, MX, TXT (SPF, DMARC).autonomys.xyzandsubspace.foundationzones.safewallet services.subspace.foundationincluding A and MX records.Changes walkthrough 📝
autonomys-xyz.tf
Add DNS records for autonomys.xyz domaindns/autonomys-xyz.tf
autonomys.xyzincluding A, CNAME, MX,TXT (SPF, DKIM, DMARC).
data.tf
Add data sources for autonomys.xyz and subspace.foundation zonesdns/data.tf
autonomys.xyzandsubspace.foundationzones.records.tf
Add DNS records for safe wallet servicesdns/records.tf
safewallet services.
subspace-foundation.tf
Add DNS records for subspace.foundation domaindns/subspace-foundation.tf
subspace.foundationincluding A and MX records.