ICANN proposes creating .INTERNAL domain

thehatfox@lemmy.world · 1 year ago

ICANN proposes creating .INTERNAL domain

reddig33@lemmy.world · 1 year ago

.local already exists. More idiocy from ICANN.

Pup Biru@aussie.zone · edit-2 1 year ago

.local exists for a very specific reason and it’s not meant to be used by regular DNS… people use it for alternate things, but it’s reserved for mDNS

if .internal were to be added, we could start using that instead of overloading!

LordCrom@lemmy.world · 1 year ago

.local is a bad choice especially if you have any MAC hosts on the network.

There is an RFC about that, but I’m too sleepy to goook it up

Possibly linux@lemmy.zip · edit-2 1 year ago

Please no

It would be nice to figure out a way to get local SSL certs for .lan and .local domains though.

Justin@lemmy.jlh.name · 1 year ago

I just use a subdomain of my main domain and use dns validation of let’s encrypt.

Possibly linux@lemmy.zip · 1 year ago

That requires outside authentication though. I think it would be cool to incorporate some SSL into dhcp

nbailey@lemmy.ca · 1 year ago

That will never happen. SSL is based on trust, and the trust root will never blindly delegate to whatever happens in random LANs. Subdomain is 100% the right approach for internal network.

duplexsystem@lemmy.blahaj.zone · edit-2 1 year ago

It can and has already happened. You can make your own root ca. Internal domains need internal root cas. Is it a pia to setup yes. Do I have it installed on my unrooted android phone and linux computers? Yes.

Edit: I didn’t see the dhcp part. But you can still make your own root ca

superbirra@lemmy.world · 1 year ago

op was obviously referring to public root CAs

duplexsystem@lemmy.blahaj.zone · 1 year ago

I didn’t get that

superbirra@lemmy.world · edit-2 1 year ago

and IT’S OK, we don’t want you to burn out

Fontasia@feddit.nl · 1 year ago

The maintainers of DHCP can’t even be bothered standardising a query to check if an address is currently in use, doubt they could take on being a CA at the same time

MigratingtoLemmy@lemmy.world · 1 year ago

Time for your own CA

duplexsystem@lemmy.blahaj.zone · 1 year ago

You can do this, I already use .internal and you can male your own root ca and make your own certificates with that

theit8514@lemmy.world · 1 year ago

If only they had done this with .local ages ago. Still, it’s a nice change, but I doubt my company will adopt.

breadsmasher@lemmy.world · 1 year ago

Just out of curiosity, does your company use a different TLD or something more arbitrary/just an IP?

5714@lemmy.dbzer0.com · 1 year ago

Abolish ICANN.

Shadywack@lemmy.world · 1 year ago

Porn sites would like this.

MystikIncarnate@lemmy.ca · 1 year ago

I have clients that use internal, but they do it as a subdomain; so internal.contoso.com

Any internal only domains that I set up are probably going to go the same way. I’ve used domain.local previously, and the DNS headache I get from that is immeasurable.

With so many things going “to the cloud” or whatever, the internal.domain.tld convention tends to make more sense to me.

What’s everyone else doing?