What would you guys think about having a DNS environment that is provided by librehosters?
I spend some thoughts on it and personally I would really think it would be pretty cool to do, so people can use a free DNS-service that offers transparency and also using libre and ethical software.
I can imagine that such service would attract people that is a part of the Librehosters network and people that want a free DNS-service without having to turn to big providers like Cloudflare.
A DNS service would need:
Somekind of webUI (afraid.org do have a simple bu fully usable UI, inspiration?)
DNSSEC support - this can be “solved” by OpenDNSSEC. But that alone would not make it to work out of the box. If we would automate it - we need to write an EPP compatible software that takes care of that.
A DNS service would not need:
Anycast - even if it would be nice, but it is not important
A fancy UI
A DNS service would be cool if it had:
An API or support for dynamic DNS
What is your thoughts about this? Is this a good idea or a bad idea?
Would it even make sense to have such service when there is already plenty of providers out there?
I think some of the groups in librehosters already host DNS . We dont really want to provide much infrastructure as librehosters i think as thats just more stuff to maintain and we all have stacks to maintain already. But its likely that some groups already offer this. At weho.st we host our own dns with powerdns but we are not allowing free access to the DNS servers, its just used for internal and for our contributors.
We provide a service like this, members of our co-op can use GitLab to manage Bind 9 zonefiles and when they update then they are checked and our DNS servers update, there is some more detail about this in this thread:
As @realitygaps reminded, libreho.st has no vocation to provide services to third parties.
But nothing prevents some librehosters to pool resources and decide to provide a common DNS service or reciprocate cross-AS DNS servers. On the contrary, this kind of attitude is encouraged.
I dunno if that’s relevant, but here are my two cents :
At ARN / Sans-Nuage, we maintain the service netlib.re which is quite close to this. The software behind this is DNSmanager : https://github.com/KaneRoot/dnsmanager . There are a few quacks and it is written in perl but it seem to work pretty well
In YunoHost, we use a software called Dynette and the use case if much different (there’s no graphical UI, there are constrains on what fields you can use exactly, and the goal is automatic configuration from the client being the yunohost instance)
Since we’re gathering DNS resources, here’s an old one for managing BIND zones with Git, including dynamic DNS support and user-controlled zones: https://www.dyne.org/software/gitzone/
That is right, if you are interested in working with us on this you could join our co-op for £1 — we are a multi-stakeholder co-operative made up of investors, partners, client and workers.
I am not talking about resolvers, rather authoritative DNS servers that you for example use for domain (nomagic.uk).
You currently use ns1.nomagic.fr. ns6.gandi.net
oh, ok. I didn’t read as thoroughly as I should have through your last post.
The DNS slave option is an interesting option for hosters indeed, I’ll give it a go once my current projects settle.
Blockquote what do you use to deply domains added to master to the slave servers?
I assume you mean AXFR/IXFR, “replicate”?
I use PowerDNS on the master and the secondary DNS servers. The master is configured as a “supermaster” - every AXFR that is made from the master to the secondarys is automatically accepted into the secondary DNS-server - so called supermaster/superslave.