Uploaded image for project: 'TrueNAS'
  1. TrueNAS
  2. NAS-110156

TTL of ACME TXT records too high

    XMLWordPrintable

    Details

    • Impact:
      Low

      Description

      ACME TXT records currently have a TTL of 3600 (seconds, aka 1 hour) which is significantly higher than technically required.

      This might cause issues in the future where DNS records are accidentally cached somewhere and ACME gets the wrong (outdated) record when verifying after doing repeat attempts.

      Limiting this to be at most the verification timeout (10 minutes afaik) would be the best solution.

        Attachments

          Attachments

            JEditor

              Activity

                People

                Assignee:
                waqar Waqar Ahmed
                Reporter:
                Ornias Kjeld Schouten-lebbing
                Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: