Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add is-a-fullstack.dev under Open Domains #2096

Merged
merged 1 commit into from
Aug 11, 2024
Merged

add is-a-fullstack.dev under Open Domains #2096

merged 1 commit into from
Aug 11, 2024

Conversation

wdhdev
Copy link
Contributor

@wdhdev wdhdev commented Aug 10, 2024
edited
Loading

Public Suffix List (PSL) Pull Request (PR) Template

Each PSL PR needs to have a description, rationale, indication of DNS validation and syntax checking, as well as a number of acknowledgements from the submitter. This template must be included with each PR, and the submitting party MUST provide responses to all of the elements in order to be considered.

Checklist of required steps

  • Description of Organization

  • Robust Reason for PSL Inclusion

  • DNS verification via dig

  • Run Syntax Checker (make test)

  • Each domain listed in the PRIVATE section has and shall maintain at least two years remaining on registration, and we shall keep the _PSL txt record in place in the respective zone(s) in the affected section

Submitter affirms the following:

  • We are listing any third-party limits that we seek to work around in our rationale such as those between IOS 14.5+ and Facebook (see Issue #1245 as a well-documented example)
  • This request was not submitted with the objective of working around other third-party limits
  • The Guidelines were carefully read and understood, and this request conforms
  • The submission follows the guidelines on formatting and sorting

For Private section requests that are submitting entries for domains that match their organization website's primary domain, please understand that this can have impacts that may not match the desired outcome and take a long time to rollback, if at all.

To ensure that requested changes are entirely intentional, make sure that you read the affectation and propagation expectations, that you understand them, and confirm this understanding.

PR Rollbacks have lower priority, and the volunteers are unable to control when or if browsers or other parties using the PSL will refresh or update.

(Link: about propagation/expectations)

  • Yes, I understand. I could break my organization's website cookies etc. and the rollback timing, etc is acceptable. Proceed.

Description of Organization

Open Domains is a service where you can register subdomains on 5 different domains is-a-fullstack.dev, is-cool.dev, is-local.org, is-not-a.dev and localplayer.dev. We provide this service for completely free and users can register as many subdomains as they want.

I am an administrator for the Open Domains project.

Organization Website:

https://open-domains.net
https://github.com/open-domains/register

Reason for PSL Inclusion

This is an addition to our original PR #1672, which was merged. And is an updated version of the closed PR #2018.

As every subdomain is separate and is owned by a different party, we require cookie separation to help provide cookie security. We also would like URL highlighting for each subdomain to make it clear each subdomain is owned by a different party.

Number of users this request is being made to serve:

According to Cloudflare analytics, over 1.25k unique visitors use and access the sites served on this domain, however that is just the domains proxied through Cloudflare. It is likely this is more like 2k+ unique visitors per month including domains we do not have analytics for.

DNS Verification via dig

dig +short TXT _psl.is-a-fullstack.dev
"https://github.com/publicsuffix/list/pull/2096"

Results of Syntax Checker (make test)

All tests passed.

@wdhdev wdhdev mentioned this pull request Aug 10, 2024
Closed
10 tasks
@groundcat
Copy link
Contributor

groundcat commented Aug 11, 2024
edited
Loading

Expiration (Note: Must remain >2 years at all times):

Domain Name: is-a-fullstack.dev  
Creation Date: 2023-03-03T08:52:48Z  
Registry Expiry Date: 2029-03-03T08:52:48Z

According to WHOIS records, it is currently in good standing. Please ensure it is renewed in the coming years to maintain a validity period of more than 2 years at all times.

DNS _psl entries (Note: Must remain in place):

The DNS entries appear correct based on checks with multiple public DNS servers.

Please ensure they remain in place at all times in the future.

Responses from multiple DNS servers for the _psl TXT record of the domain:

  • Response from 8.8.8.8: "https://github.com/publicsuffix/list/pull/2096"
  • Response from 1.1.1.1: "https://github.com/publicsuffix/list/pull/2096"
  • Response from 208.67.222.222: "https://github.com/publicsuffix/list/pull/2096"

Sorting:

The sorting appears to be correct.

Reasoning/Organization Description:

For potential website usage, I queried multiple search engines. The highest count across these search engines is about 28 results, possibly due to the fact that this is a new domain as part of its registration service.

According to Cloudflare analytics, over 1.25k unique visitors use and access the sites served on this domain,

Seems to be on the light side, but probably still meets the relevance criteria.

however that is just the domains proxied through Cloudflare. It is likely this is more like 2k+ unique visitors per month including domains we do not have analytics for.

I am not (yet) a user of Open Domains, but I checked its GitHub and saw end users have the option to choose to proxy through Cloudflare or not, so it makes sense that the actual unique visitor count is likely higher, so yes this is probably fine for relevance.

Checked the SERP and CT, which show some website usage belonging to different individuals or entities, consistent with the submitter's description.

65 backlinks were found on the domain and subdomains of is-a-fullstack.dev:

To check for possible security issues, used VirusTotal, and here are the obtained observations:

1/93 shows malicious (Seclookup flagged this domain as malicious). It would be helpful to explain the abuse mitigations here @wdhdev All clean

  • Expiration (Note: Must STAY >2y at all times)
    • is-a-fullstack.dev expires 2029-03-03
  • DNS _psl entries (Note: Must STAY in place)
  • Tests pass
  • Sorting
  • Reasoning/Organization description
  • Non-personal email address

@wdhdev
Copy link
Contributor Author

wdhdev commented Aug 11, 2024

1/93 shows malicious (Seclookup flagged this domain as malicious). It would be helpful to explain the abuse mitigations here

@groundcat That analysis was from 2 months ago, I'm not sure why it was flagged, however we do have abuse mitigations in place and respond to any abuse reports in < 24 hours, domains are either reported through a GitHub issue or are reported to our security email.

I ran a new analysis check and the domain was not flagged by any vendors: https://www.virustotal.com/gui/domain/is-a-fullstack.dev

@simon-friedberger simon-friedberger merged commit c9578bf into publicsuffix:master Aug 11, 2024
1 check passed
@wdhdev wdhdev deleted the patch-4 branch August 11, 2024 23:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@wdhdev @groundcat @simon-friedberger