Codeberg/Community
60
387
Fork
You've already forked Community
12

German TLD #180

Closed
opened 2020年05月15日 17:49:47 +02:00 by Ghost · 26 comments

Why do we rely on a foreign country to maintain our TLD? I suggest do change it to .eu or .de.

Why do we rely on a foreign country to maintain our TLD? I suggest do change it to `.eu` or `.de`.
Member
Copy link

Domains .de suggests a very national scope (surely FOSS should not be bound to national borders?), .eu might be worth a thought. Other projects like wikipedia service multiple country domains for redundancy, this might be an interesting option long-term. However it would imply some spending we need to discuss.

Domains `.de` suggests a very national scope (surely FOSS should not be bound to national borders?), `.eu` might be worth a thought. Other projects like wikipedia service multiple country domains for redundancy, this might be an interesting option long-term. However it would imply some spending we need to discuss.
Owner
Copy link

The term "a foreign country" depends on your point of view. Changing it to a German TLD would change it to a TLD managed by a country which is foreign to 99.99 % of the world's population.

I know this comparison is somewhat misleading since the actual user base of Codeberg.org is of course not to be compared with the world's population, but there are many international coders over here, so I'm sure the .org TLD is the best choice for an international project which aims at being an open organization like codeberg does.

I strictly disapprove a change of the TLD. I disapprove an exclusive treatment for Germany (like an additional German TLD). I don't see any need for supporting multiple domains at all.

~ I think that it's not wrong that a TLD is managed by some country, however, it might be better to have a true common management for .org domains. What I find worse is that most TLDs are technically managed by private companies - I'd prefer to change that on a global scale. But that's a different topic to discuss somewhere else :-)

The term "a foreign country" depends on your point of view. Changing it to a German TLD would change it to a TLD managed by a country which is foreign to 99.99 % of the world's population. I know this comparison is somewhat misleading since the actual user base of Codeberg.org is of course not to be compared with the world's population, but there are many international coders over here, so I'm sure the .org TLD is the best choice for an international project which aims at being an open organization like codeberg does. I strictly disapprove a change of the TLD. I disapprove an exclusive treatment for Germany (like an additional German TLD). I don't see any need for supporting multiple domains at all. ~ I think that it's not wrong that a TLD is managed by some country, however, it might be better to have a true common management for .org domains. What I find worse is that most TLDs are technically managed by private companies - I'd prefer to change that on a global scale. But that's a different topic to discuss somewhere else :-)

What I had in mind was taking away power from Five Eyes countries after all managing a TLD is something every countriy within the EU can do as well.
I dont know what additinal power a country managing a TLD would have as Im not so deep in that part of networking but I would bet it makes for easier MITM attacks.
Keeping in mind the unstable political situation one might also imagine an export embargo which could potentially cut off access to .org domains for certain countries even though this server is located in Germany and should not be affected by such embargos.
While I agree a federated management of .org domains would be nice I cant see it happenig.
It was certainly not my intention to imply other nationalities shouldnt be able to collaborate here.

What I had in mind was taking away power from Five Eyes countries after all managing a TLD is something every countriy within the EU can do as well. I dont know what additinal power a country managing a TLD would have as Im not so deep in that part of networking but I would bet it makes for easier MITM attacks. Keeping in mind the unstable political situation one might also imagine an export embargo which could potentially cut off access to `.org` domains for certain countries even though this server is located in Germany and should not be affected by such embargos. While I agree a federated management of `.org` domains would be nice I cant see it happenig. It was certainly not my intention to imply other nationalities shouldnt be able to collaborate here.

I agree with PhilippMayrTH.
In my opinion one the main selling points of this portal and therefore one of the main reasons not to use Github, Gitlab, Sourceforge, Bitbucket, etc. is that it is not US based!
Just think about how much technology and intelligence (and therefore power) is concentrated in that one country. What would happen if the political situation changed and they denied the rest of the world access to their services or just shut them down for whatever reason.

A .de TLD would be a bit country specific indeed, but I consider an .eu TLD a great way to emphasize the fact that this is one of the very few non-US based FOSS hosting platforms.

I agree with PhilippMayrTH. In my opinion one the main selling points of this portal and therefore one of the main reasons not to use Github, Gitlab, Sourceforge, Bitbucket, etc. is that it is not US based! Just think about how much technology and intelligence (and therefore power) is concentrated in that one country. What would happen if the political situation changed and they denied the rest of the world access to their services or just shut them down for whatever reason. A `.de` TLD would be a bit country specific indeed, but I consider an `.eu` TLD a great way to emphasize the fact that this is one of the very few non-US based FOSS hosting platforms.

I'm for .eu too but as addition - it could be used for loadbalancing too :)

I'm for `.eu` too but as addition - it could be used for loadbalancing too :)

As an EU data patriot, I am in favor of the .eu TLD too.

PS: I have an EU data patriot project in the pipeline, and guess what, will be hosted on Codeberg Pages, with Gandi as registrar. :)

As an EU data patriot, I am in favor of the `.eu` TLD too. PS: I have an EU data patriot project in the pipeline, and guess what, will be hosted on Codeberg Pages, with Gandi as registrar. :)
Member
Copy link

As of today, we have registered .eu, too. Not sure however whether gitea can handle multi-TLD hosts, need some testing. Alternatively. we might also consider hosting pages on .eu, allowing nice+short subdomains <username>.codeberg.eu. Thoughts?

As of today, we have registered `.eu`, too. Not sure however whether gitea can handle multi-TLD hosts, need some testing. Alternatively. we might also consider hosting pages on `.eu`, allowing nice+short subdomains `<username>.codeberg.eu`. Thoughts?

Pretty urls on .eu - even instead of .io as with others - sounds like a good option too. Right now codeberg.eu is throwing cert error, obviously.

Pretty urls on `.eu` - even instead of `.io` as with others - sounds like a good option too. Right now `codeberg.eu` is throwing cert error, obviously.

Regarding the .org TLD, just remember that there was this ownership controversy recently, which luckily didn't go through, but none shall feel relaxed.

Regarding the `.org` TLD, just remember that there was this ownership controversy recently, which luckily didn't go through, but none shall feel relaxed.
Member
Copy link

Pretty urls on .eu - even instead of .io as with others - sounds like a good option too. Right now codeberg.eu is throwing cert error, obviously.

yeah, currently domain only registered to prevent domaingrabbing.

> Pretty urls on `.eu` - even instead of `.io` as with others - sounds like a good option too. Right now `codeberg.eu` is throwing cert error, obviously. yeah, currently domain only registered to prevent domaingrabbing.

someone should rename this issue title as the consent is more or less clear now ;)

someone should rename this issue title as the consent is more or less clear now ;)

As of today, we have registered .eu, too. Not sure however whether gitea can handle multi-TLD hosts, need some testing. Alternatively. we might also consider hosting pages on .eu, allowing nice+short subdomains <username>.codeberg.eu. Thoughts?

it use the host from the request normaly. But there are links wicht are generated from the host written into the config.

this issue should impruve the situation: https://github.com/go-gitea/gitea/issues/11732

> As of today, we have registered `.eu`, too. Not sure however whether gitea can handle multi-TLD hosts, need some testing. Alternatively. we might also consider hosting pages on `.eu`, allowing nice+short subdomains `<username>.codeberg.eu`. Thoughts? it use the host from the request normaly. But there are links wicht are generated from the host written into the config. this issue should impruve the situation: https://github.com/go-gitea/gitea/issues/11732
Owner
Copy link

If we want to use both, bare in mind that it seems like Gitea doesn't add a rel=canonical link, which means that everything shows up twice on Google & Co.!

I'm in favor of deciding on one domain, and have the other just redirect to the correct one. Currently, I don't see anything speaking against continuing using .org as the main domain for the next couple of years.

If we want to use both, bare in mind that **it seems like Gitea doesn't add a [rel=canonical](https://support.google.com/webmasters/answer/139066?hl=en) link**, which means that everything shows up twice on Google & Co.! I'm in favor of deciding on one domain, and have the other just redirect to the correct one. Currently, I don't see anything speaking against continuing using .org as the main domain for the next couple of years.

Google (and probably others) support rel as HTTP headers which we should be able to configure in the reverse proxy. See https://support.google.com/webmasters/answer/139066.

Google (and probably others) support rel as HTTP headers which we should be able to configure in the reverse proxy. See https://support.google.com/webmasters/answer/139066.
Member
Copy link

We could surely inject rel=canoncial in the head template. Still there are absolute links in html, typically generated by config variables DOMAIN, SSH_DOMAIN, ROOT_URL?

We could surely inject `rel=canoncial` in the head template. Still there are absolute links in html, typically generated by config variables `DOMAIN`, `SSH_DOMAIN`, `ROOT_URL`?

I've been trying to play around with the Testing instance of Codeberg, and while it seems good to go, Gandi has some problems handling it, anmely the best thing to do is web redirects, and not via ALIAS for the apex, or CNAME for the www.
But redirecting is obviously suboptimal.

I've been trying to play around with the Testing instance of Codeberg, and while it seems good to go, Gandi has some problems handling it, anmely the best thing to do is web redirects, and not via ALIAS for the apex, or CNAME for the www. But redirecting is obviously suboptimal.
Member
Copy link

what problems exactly?

what problems exactly?

SSL problems, the cert belonging to codeberg-testing.org, not codeberg.eu. But now I'm playing around with KeyCDN too, not exactly the solution I was looking for in Netlify replacement, but almost. I will nag them about the custom HTTP headers feature.
Oh, and they are Swiss, so it's all green from me.

SSL problems, the cert belonging to codeberg-testing.org, not codeberg.eu. But now I'm playing around with KeyCDN too, not exactly the solution I was looking for in Netlify replacement, but almost. I will nag them about the custom HTTP headers feature. Oh, and they are Swiss, so it's all green from me.

Right now, I have the apex ALIAS pointing to keepyourdataineurope.codeberg.eu, not testing www for now, it's not even in CNAME.

I'm getting this while testing in a Tor session in Brave (Tor = no cache). If I click to proceed on anyway, I get to the main page of codeberg-testing, but it takes my URL, and shows the cert as belonging to codeberg-testing.org.

When I did it with KeyCDN in between, with www CNAME pointing to the KeyCDN address, and the apex ALIAS pointing to www, I got no HTTPS problem, but again, my own domain was displayed, the cert had the proper url (with www, because I set that one up to be used), but I got the main page of codeberg-testing.org.

Right now, I have the apex ALIAS pointing to keepyourdataineurope.codeberg.eu, not testing www for now, it's not even in CNAME. I'm getting this while testing in a Tor session in Brave (Tor = no cache). If I click to proceed on anyway, I get to the main page of codeberg-testing, but it takes my URL, and shows the cert as belonging to codeberg-testing.org. When I did it with KeyCDN in between, with www CNAME pointing to the KeyCDN address, and the apex ALIAS pointing to www, I got no HTTPS problem, but again, my own domain was displayed, the cert had the proper url (with www, because I set that one up to be used), but I got the main page of codeberg-testing.org.

I'm also doing some checks with hardenize.com and internet.nl, they are throwing some errors related to the cert situation.

I'm also doing some checks with hardenize.com and internet.nl, they are throwing some errors related to the cert situation.
Member
Copy link

SSL problems, the cert belonging to codeberg-testing.org, not codeberg.eu [...]

What do you mean by "belong to"?

> SSL problems, the cert belonging to codeberg-testing.org, not codeberg.eu [...] What do you mean by "belong to"?
Member
Copy link

(the .eu domain is using a dedicated wildcard certificate which should not have any relation to -test?)

(the .eu domain is using a dedicated wildcard certificate which should not have any relation to -test?)

Probably easier to show in screenshots.
As you can see the @ is ALIAS pointing to keepyourdataineurope.codeberg.eu - which, should the test phase move to the production server will stay the same url, even if different IP. So, this should be good and fault tolerant.
But I get the errors for the cert as shown in the Hardenize and the internet.nl screens.
The ALIAS record resolves to the IPv4 and IPv6 addresses correctly, but loads (after falling on its face with a cert error) the main page of codeberg-test.org.

Probably easier to show in screenshots. As you can see the @ is ALIAS pointing to keepyourdataineurope.codeberg.eu - which, should the test phase move to the production server will stay the same url, even if different IP. So, this should be good and fault tolerant. But I get the errors for the cert as shown in the Hardenize and the internet.nl screens. The ALIAS record resolves to the IPv4 and IPv6 addresses correctly, but loads (after falling on its face with a cert error) the main page of codeberg-test.org.

But if I use KeyCDN, the cert becomes more-or less dandy, with a bit of a glitch, but I still get the codeberg-test.org main page.
Thus my mta-sts.txt remains unreachable. And everything else. :(

But if I use KeyCDN, the cert becomes more-or less dandy, with a bit of a glitch, but I still get the codeberg-test.org main page. Thus my mta-sts.txt remains unreachable. And everything else. :(
Member
Copy link

The user repo name is determined from the subdomain in the request. If the request contains no subdomain, default (home) page will be rendered. For what you try to attempt it seems we would need to implement some registry of domain mappings (and some scheme to prove ownership). Ideas+contributions in this area absolutely welcome!

The user repo name is determined from the subdomain in the request. If the request contains no subdomain, default (home) page will be rendered. For what you try to attempt it seems we would need to implement some registry of domain mappings (and some scheme to prove ownership). Ideas+contributions in this area absolutely welcome!
Owner
Copy link

Anyone who wants to add some ideas for codeberg.eu, please refer to #316 now.

Anyone who wants to add some ideas for codeberg.eu, please refer to #316 now.
Sign in to join this conversation.
No Branch/Tag specified
main
No results found.
Labels
Clear labels
accessibility
Reduces accessibility and is thus a "bug" for certain user groups on Codeberg.
bug
Something is not working the way it should. Does not concern outages.
bug
infrastructure
Errors evidently caused by infrastructure malfunctions or outages
Codeberg
This issue involves Codeberg's downstream modifications and settings and/or Codeberg's structures.
contributions welcome
Please join the discussion and consider contributing a PR!
docs
No bug, but an improvement to the docs or UI description will help
duplicate
This issue or pull request already exists
enhancement
New feature
infrastructure
Involves changes to the server setups, use `bug/infrastructure` for infrastructure-related user errors.
legal
An issue directly involving legal compliance
licence / ToS
involving questions about the ToS, especially licencing compliance
please chill
we are volunteers
Please consider editing your posts and remember that there is a human on the other side. We get that you are frustrated, but it's harder for us to help you this way.
public relations
Things related to Codeberg's external communication
question
More information is needed
question
user support
This issue contains a clearly stated problem. However, it is not clear whether we have to fix anything on Codeberg's end, but we're helping them fix it and/or find the cause.
s/Forgejo
Related to Forgejo. Please also check Forgejo's issue tracker.
s/Forgejo/migration
Migration related issues in Forgejo
s/Pages
Issues related to the Codeberg Pages feature
s/Weblate
Issue is related to the Weblate instance at https://translate.codeberg.org
s/Woodpecker
Woodpecker CI related issue
security
involves improvements to the sites security
service
Add a new service to the Codeberg ecosystem (instead of implementing into Forgejo)
upstream
An open issue or pull request to an upstream repository to fix this issue (partially or completely) exists (i.e. Forgejo, Weblate, etc.)
wontfix
Codeberg's current set of contributors are not planning to spend time on delegating this issue.
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
7 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
Codeberg/Community#180
Reference in a new issue
Codeberg/Community
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?