-
-
Notifications
You must be signed in to change notification settings - Fork 3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: add Default OpenNIC domain DoH configuration. #9200
Conversation
This adds OpenNIC domains (non-ICANN) resolver to default resolvers. Domains added is .bbs .chan .cyb .dyn .geek .gopher .indy .libre .neo .null .o .oss .oz .parody .pirate
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
OpenNIC has been around for over two decades, and the community provides multiple endpoints in the spirit of distributed web.
Supporting OpenNIC TLDs in Kubo will bring support for DNSLinks on these TLDs on public and local gateways, including IPFS Desktop and ipns://
backed by Kubo in Brave (if no custom DoH is selected by the user in Brave Settings).
@matyapiro31 some asks/questions we need to address first:
- DNS.Resolvers (config docs) needs to be updated
- all implicit TLDs from this list need to be listed under
Default
.
- all implicit TLDs from this list need to be listed under
- I see this PR is fairly conservative and does not include Peered TLDs
- Was this a conscious decision to limit TLDs to ones directly controlled by OpenNIC (no third-parties) to avoid future problems like suspended peering with
.bit
including recent.coin
controversy?
- Was this a conscious decision to limit TLDs to ones directly controlled by OpenNIC (no third-parties) to avoid future problems like suspended peering with
- Unsure how future-proof is hard-coding a single DoH endpoint from a smaller service (note that the other ones are from Cloudflare)
- My suggestion is to park this until we can provide a robust solution that won't fail due to a single server being down. This means:
- support for multiple Resolvers per TLD, as noted in Add DNS Fallback Resolvers #8173 (comment) – this will be perfect for OpenNIC, as we could have many resolvers and no single point of failure.
- is this something you would be interesting to submit PR for @matyapiro31? (I am personally willing to allocate review time to land it, as it makes things way more robust)
- (optional) support for DNSCrypt and/or DNS-over-TLS, allowing us to ship defaults with more OpenNIC servers from https://servers.opennic.org/
- support for multiple Resolvers per TLD, as noted in Add DNS Fallback Resolvers #8173 (comment) – this will be perfect for OpenNIC, as we could have many resolvers and no single point of failure.
- My suggestion is to park this until we can provide a robust solution that won't fail due to a single server being down. This means:
|
@matyapiro31 are you still planning to continue on this PR and #8173, or should we close for now? |
I close this PR. |
This adds OpenNIC domains (non-ICANN) resolver to default resolvers.
DoH service provider is ethservices, who has been providing DoH service from 2021.
TLDs provided by OpenNIC are: