Implement DNS Certification Authority Authorization (CAA) resource record
Certification Authority Authorization (CAA), defined in RFC 6844, is a standard that allows domain name owners to control which CAs are allowed to issue certificates for their properties.
ssllabs.com has implemented the detection for this record when checking for the SSL grade they give. To prevent getting graded down and use state of the art techniques for ssl security I would usggest to allow adding those nameserver record.
RFC: https://tools.ietf.org/html/rfc6844
ssllabs announcement https://blog.qualys.com/ssllabs/2017/01/13/whats-new-ssl-labs-1-26-5
Cool Dark
shared this idea
This functionality is now available in the Plesk 17.8 preview. We encourage you to check the implementation and let us know what you think. Please visit the following forum thread to learn how to access the preview: https://talk.plesk.com/threads/plesk-onyx-17-8-preview.343283/
We would appreciate hearing your feedback on the implementation of this functionality. Thanks in advance!
-
ZAHNER
commented
+ too
-
MOLDDATA CLOUD
commented
+
-
Anonymous
commented
nice efforts Cool Dark
-
Cool Dark
commented
Just an update: The CA/Browser Forum recently voted to mandate CAA support as part of its certificate issuance standard Baseline Requirements. The changes will become effective in September 2017.
https://blog.qualys.com/ssllabs/2017/03/13/caa-mandated-by-cabrowser-forum
-
Peter
commented
usefull feature, please add :)
-
Anonymous
commented
Agree, Plesk needs to add this.