This file is indexed.

/usr/share/opendnssec/addns.xml is in opendnssec-common 1:2.1.3-0.2build1.

This file is owned by root:root, with mode 0o644.

The actual contents of the file can be viewed below.

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
<?xml version="1.0" encoding="UTF-8"?>

<Adapter>
 	<DNS>
		<TSIG>
			<Name>secret.example.com</Name>
			<!-- http://www.iana.org/assignments/tsig-algorithm-names -->
			<Algorithm>hmac-sha256</Algorithm>
			<!-- base64 encoded secret -->
			<Secret>sw0nMPCswVbes1tmQTm1pcMmpNRK+oGMYN+qKNR/BwQ=</Secret>
		</TSIG>

		<Inbound>
			<!-- Address of host to request XFR from -->
			<RequestTransfer>
				<!-- EXAMPLE: send request to 1.2.3.4 on the default port 53 -->
				<Remote>
					<Address>1.2.3.4</Address>
				</Remote>
				<!-- EXAMPLE: send request to dead:beef::1 on port 5353, TSIG signed with secret.example.com -->
				<Remote>
					<Address>dead:beef::1</Address>
					<Port>5353</Port>
					<Key>secret.example.com</Key>
				</Remote>
			</RequestTransfer>

			<!-- Allow NOTIFY messages from host -->
			<AllowNotify>
				<!-- EXAMPLE: allow notifies from 1.2.3.4 -->
				<Peer>
					<Prefix>1.2.3.4</Prefix>
				</Peer>
			</AllowNotify>
		</Inbound>

		<Outbound>
			<!-- Provide XFR to host -->
			<ProvideTransfer>
				<!-- EXAMPLE: provide XFR to 1.2.3.5 with key secret.example.com -->
				<Peer>
					<Prefix>1.2.3.5</Prefix>
					<Key>secret.example.com</Key>
				</Peer>
			</ProvideTransfer>
	
			<!-- Send NOTIFY messages to host -->
			<Notify>
				<!-- EXAMPLE: send NOTIFY to 1.2.3.5 on the default port 53 -->
				<Remote>
					<Address>1.2.3.5</Address>
				</Remote>
			</Notify>
		</Outbound>
	</DNS>
</Adapter>