Creates sensible and secure DNS entries in AWS Route53 for inactive or parked domains, to reduce abuse potential, based on the recommendations of the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) Parked Domains Best Common Practices.
module "parked_domain" {
source = "grendel-consulting/securely_parked_domain/aws"
domain = "example.com"
zone_id = "Z1234567890ABC"
rua_email = "dmarc-reports@example.com"
caa_email = "security@example.com"
}| Name | Version |
|---|---|
| terraform | >= 1.5.0 |
| aws | >= 5.0.0 |
| Name | Version |
|---|---|
| aws | >= 5.0.0 |
When provided with a target domain and AWS Route53 Zone ID, this module creates the following DNS records with a 48-hour TTL:
- SPF records for both apex and subdomains
- MX records for apex and subdomains
- DMARC record
- CAA records
It assumes that SOA records will have been created and continue to be managed by AWS.
Published on the Terraform Registry