keyoxide-web/content/guides/dns.md

48 lines
948 B
Markdown
Raw Permalink Normal View History

2020-08-07 17:04:28 -06:00
# Adding a DNS proof
Let's add a decentralized DNS proof to your OpenPGP keys.
[[toc]]
## Update DNS records for your website
Add the following TXT record to the DNS records of the (sub)domain you want to prove control over (make sure to replace FINGERPRINT):
`openpgp4fpr:FINGERPRINT`
No specific TTL value is required.
## Update the PGP key
First, edit the key (make sure to replace FINGERPRINT):
2021-03-31 06:54:54 -06:00
```
gpg --edit-key FINGERPRINT
```
2020-08-07 17:04:28 -06:00
Add a new notation:
2021-03-31 06:54:54 -06:00
```
notation
```
2020-08-07 17:04:28 -06:00
Enter the notation (make sure to replace DOMAIN, don't include https://):
2021-03-31 06:54:54 -06:00
```
proof@metacode.biz=dns:DOMAIN?type=TXT
```
2020-08-07 17:04:28 -06:00
Save the key:
2021-03-31 06:54:54 -06:00
```
save
```
2020-08-07 17:04:28 -06:00
Upload the key to WKD or use the following command to upload the key to [keys.openpgp.org](https://keys.openpgp.org) (make sure to replace FINGERPRINT):
2021-03-31 06:54:54 -06:00
```
gpg --keyserver hkps://keys.openpgp.org --send-keys FINGERPRINT
```
And you're done! Reload your profile page, it should now show a verified domain name.