Librehosters DNS-service


#1

What would you guys think about having a DNS environment that is provided by librehosters?
I spend some thoughts on it and personally I would really think it would be pretty cool to do, so people can use a free DNS-service that offers transparency and also using libre and ethical software.

I can imagine that such service would attract people that is a part of the Librehosters network and people that want a free DNS-service without having to turn to big providers like Cloudflare.

A DNS service would need:

  • Somekind of webUI (afraid.org do have a simple bu fully usable UI, inspiration?)

  • Servers located on several places

  • Hostnames that is not under the same domainname and even tld.
    Example: ns.libreho.st
    ns.weho.st
    ns.linux.pizza
    ns.allmende.io

  • DNSSEC support - this can be “solved” by OpenDNSSEC. But that alone would not make it to work out of the box. If we would automate it - we need to write an EPP compatible software that takes care of that.

A DNS service would not need:

  • Anycast - even if it would be nice, but it is not important
  • A fancy UI

A DNS service would be cool if it had:

  • An API or support for dynamic DNS

What is your thoughts about this? Is this a good idea or a bad idea?
Would it even make sense to have such service when there is already plenty of providers out there?


#2

I think some of the groups in librehosters already host DNS . We dont really want to provide much infrastructure as librehosters i think as thats just more stuff to maintain and we all have stacks to maintain already. But its likely that some groups already offer this. At weho.st we host our own dns with powerdns but we are not allowing free access to the DNS servers, its just used for internal and for our contributors.


#3

We provide a service like this, members of our co-op can use GitLab to manage Bind 9 zonefiles and when they update then they are checked and our DNS servers update, there is some more detail about this in this thread:

And on this wiki page.

The things that we need to add, when we find the time and resources are:

  • The ability to provide the data in JSON and / or YAML format
  • API access to allow Let’s Encrypt to use DNS verification and for dynamic DNS
  • DNSSEC

If anybody would like to join our co-op and help with the development of this service that would be most welcome.


#4

Totally agreed with all three :slight_smile:

As @realitygaps reminded, libreho.st has no vocation to provide services to third parties.
But nothing prevents some librehosters to pool resources and decide to provide a common DNS service or reciprocate cross-AS DNS servers. On the contrary, this kind of attitude is encouraged.


#5

I dunno if that’s relevant, but here are my two cents :

  • At ARN / Sans-Nuage, we maintain the service netlib.re which is quite close to this. The software behind this is DNSmanager : https://github.com/KaneRoot/dnsmanager . There are a few quacks and it is written in perl but it seem to work pretty well :wink:

  • In YunoHost, we use a software called Dynette and the use case if much different (there’s no graphical UI, there are constrains on what fields you can use exactly, and the goal is automatic configuration from the client being the yunohost instance)


#6

Since we’re gathering DNS resources, here’s an old one for managing BIND zones with Git, including dynamic DNS support and user-controlled zones: https://www.dyne.org/software/gitzone/


#7

We dont really want to provide much infrastructure as librehosters i think as thats just more stuff to maintain

Well, if you are concerned about stuff to maintain - why have weho.st or even librehosters then? :wink:
Joke aside, I get your point.

Personally, I would love to see a project like this between different hosters. Would be nice if we could pull something off.


#8

Best way to do so is to start collaborating with one other librehoster who shares your concern and grow from there.


#9

Agree,

So if anyone in this community want’s to do something like this - please let me know :slight_smile:


#10

As I said above we are doing something like this…


#11

But you did not say that you was open to collaboration between hosters, only people in your co-op. Or did I misunderstand you?


#12

That is right, if you are interested in working with us on this you could join our co-op for £1 — we are a multi-stakeholder co-operative made up of investors, partners, client and workers.