Control: MX records should have valid hostname

Description

It is recommended that MX records should have a valid domain or subdomain name and the name not starts or ends with a dot (.).

Usage

Run the control in your terminal:

powerpipe control run net_insights.control.dns_mx_valid_hostname

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run net_insights.control.dns_mx_valid_hostname --share

Steampipe Tables

net_dns_record

Params

Args	Name	Default	Description	Variable
$1	domain_names	`["github.com","microsoft.com"]`	DNS domain names.	domain_names

SQL

with domain_list as (
  select distinct domain from net_dns_record where domain in (select jsonb_array_elements_text(to_jsonb($1::text[]))) order by domain
),
mx_records as (
  select domain, rtrim(target, '.') as target, rtrim(target, '.') ~ '^[^.].*[^-_.]$' as is_valid from net_dns_record where domain in (select domain from domain_list) and type = 'MX'
)
select
  domain as resource,
  case
    when (select count(*) from mx_records where domain = domain_list.domain and not is_valid) > 0 then 'alarm'
    else 'ok'
  end as status,
  case
    when (select count(*) from mx_records where domain = domain_list.domain and not is_valid) > 0 then domain || ' has MX record(s) ' || (select string_agg(target, ', ') from mx_records where domain = domain_list.domain and not is_valid) || ' with invalid host name.'
    else domain || ' has no MX records with invalid host name.'
  end as reason
from
  domain_list;