-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add cloud-ip.biz and ip-dynamic.org for ClouDNS #2202
base: master
Are you sure you want to change the base?
Conversation
update cloudns.net list
add one more domain name to the list with public hosts for dynamic dns
sort update as per instructions here: https://github.com/publicsuffix/list/wiki/Guidelines#sort-your-submission-correctly-important
util: gTLD autopull updates for 2024-03-06T15:01:05 UTC
Revert "util: gTLD autopull updates for 2024-03-06T15:01:05 UTC"
sorting update
add cloud-ip.biz and ip-dynamic.org
fixed sorting
@boyanpeychev Can you please put the PR template back and fill it out, thank you. |
Done. |
|
@boyanpeychev You have noted that you are looking to get around Cloudflare and Let's Encrypt rate limits, which is not allowed as per our guidelines. (Did you forget to remove them from the template?) |
Sorry, check by mistake. Fixed. |
So to confirm, you are not submitting this PR with intentiond to evade Cloudflare and Let's Encrypt restrictions? |
No, we are submitting this PR as all our other domain names, because the end users using the sub-domains want to issue their own SSL certificates. |
(Sorry, misclick.) Could you please clarify how your users are prevented from getting SSL certificates without a PSL entry? |
From what I know they are unable to make wildcard ssl validations and some services didn't accept them. |
Could it be due to Let's Encrypt rate limits? I've never had issues registering wildcards at the 4th, or even 5th level. |
Okay, this is exactly what we mean by third-party limitations. So please, if you have received complaints from people about not being able to use service X just add service X to the list in the PR template under "We are listing any third-party limits that we seek to work around [...]" |
Well, I was thinking the same, but for some reason two comments above someone told me this is prohibited and I was thinking this is something I have submitted wrong. Updated it. |
Right, this is unfortunately a little confusing. The reason for inclusion must be something other than working around third party limits. So, if you are submitting something because you need separate domains for customers (as you clearly do) that's fine. However, in that case we would still like to know about any third party limits that this is also relevant to. If you are submitting something only to work around third party limits we ask that you resolve this with the third party directly. |
I still don't understand what is the difference here with our service and AWS for example? Did you ask them to resolve the issue with the third parties? Actually I don't know which are those third parties. You can check back the history with our other domain names. You will get tons of requests after few months for those domain names like the case with cloudns.be about half year ago. Actually the two domain names I'm adding was already in other PR . They was rejected because the requests are not from the owner of the domain names and then I was contacted to make my own PR as an owner. I'm here to help to the community who is using our free services, not to trick someone's limits. Getting back to the roots of PSL, our domain names which provides free dyndns service are exactly what this list is created for: Simply everyone who open account in ClouDNS at the moment gets domain from those two for free. |
@simon-friedberger I think it is fine. They already have other entries on the PSL and it seems they are seeking cookie separation as per their rationale (please confirm this @boyanpeychev). I think they just forgot to remove the part of the template stating they are trying to get around specific limits. They also have specified they are not attempting to get around any limits in their PR template. |
I have a ClouDNS account, which allows me to create subdomains under both |
@wdhdev yes cookie separation is also a reason to have our free domain names in this list. Thanks for pointing this! |
@boyanpeychev Slightly off-topic here, but it seems that CAs like Let's Encrypt likely ignore the private section and only use the ICANN section of the PSL. So, for domains in the private section, wildcards are still possible. According to the Baseline Requirements (latest version):
|
@wdhdev I also think it's fine I just wanted to resolve the communication issues. Clearly, they are also getting added because of third-party limits but these are not listed in the PR description now.
Presumably, these are Letsencrypt and Cloudflare, but it would be great to know if there is anything else. |
While we're here: another suffix in your block, |
Name servers are up and running and sub-delegations where working. Fixed the TXT record, thanks! |
@boyanpeychev If you could add a statement that you are working around cloudflare and letsencrypt limits, and whatever else to the initial comment we could merge this. |
We have tried to contact the complaining users first to get the whole picture first. Thanks! |
Public Suffix List (PSL) Submission
Checklist of required steps
Description of Organization
Robust Reason for PSL Inclusion
DNS verification via dig
Run Syntax Checker (
make test
)Each domain listed in the PRIVATE section has and shall maintain at least two years remaining on registration, and we shall keep the
_psl
TXT record in place in the respective zone(s).Submitter affirms the following:
ClouDNS is not using this to work around rate-limits of third party services.
For PRIVATE section requests that are submitting entries for domains that match their organization website's primary domain, please understand that this can have impacts that may not match the desired outcome and take a long time to rollback, if at all.
To ensure that requested changes are entirely intentional, make sure that you read the affectation and propagation expectations, that you understand them, and confirm this understanding.
PR Rollbacks have lower priority, and the volunteers are unable to control when or if browsers or other parties using the PSL will refresh or update.
(Link: about propagation/expectations)
Description of Organization
ClouDNS provides free dynamic dns hosting with subdomains.
Organization Website:
https://www.cloudns.net
Reason for PSL Inclusion
We are dynamic dns provider. Each sub-domain name is used by different user. Usually we provide up to 30K sub-delegations per domain.
Number of users this request is being made to serve: up to 30000
DNS Verification
Results of Syntax Checker (
make test
)TOTAL: 5
PASS: 5