Add sealos.app and regional domains to the PSL#2741
Add sealos.app and regional domains to the PSL#2741yangchuansheng wants to merge 1 commit intopublicsuffix:mainfrom
Conversation
|
Hi, there are some problems that you'll need to fix before this can get merged.
|
The requested PSL domain was created a day ago with 5 certificates and 1 subdomain only, so can't really find any useful information. I did a search on sealos.io using the However, there are only 174 subdomains, and roughtly 20 of them using a https://crt.sh/?q=sealos.io&dir=^&sort=1&group=icaid A historic scan of sealos.io on the subdomain finder shows only 139 domains, the amount of new domains over the past 2 years can hardly support your claim. And also, usw.sealos.io was flagged on virustotal for phishing and other fraud, and 3 of the 4LDs were also flagged on virustotal for phishing and/or being malicious. https://www.virustotal.com/gui/domain/fhhxsgaemumq.usw.sealos.io |
I think they are submitting |
|
Added Sealos domains to the public suffix list. Signed-off-by: Carson Yang <yangchuansheng33@gmail.com>
I have addressed all the issues mentioned:
Please let me know if there is anything else needed. |
Thanks for the thorough investigation. 1. Real Scale and Business Legitimacy:
2. Regarding the VirusTotal flags: Because we offered free tiers on
We are trying to do the right thing by separating user content from our brand. |
@groundcat Reason i did the check on sealos.io (their company site) is because im assuming they are moving user sites previously hosted on https://crt.sh/?q=sealos.app&dir=%5E&sort=1&group=icaid https://crt.sh/?q=sealos.io&dir=%5E&sort=1&group=icaid Upon checking The goal of that post is to fact check their user count claim in their submission form. If they are moving subdomains off sealos.io to sealos.app then checking subdomains on sealos.io should show their current active user counts, which seemed to be exaggarated (alot).
My assumption that they are moving user sites previously hosted on |
|
If you really want regional domains, could you use a wildcard entry instead? |
I have so many questions.
Quoted from @groundcat (#2743 (comment)) Please note per PSL guidelines:
|
Added Sealos domains to the public suffix list.
Public Suffix List (PSL) Submission
Checklist of required steps
Description of Organization
Robust Reason for PSL Inclusion
DNS verification via dig
Each domain listed in the PRIVATE section has and shall maintain at least two years remaining on registration, and we shall keep the
_pslTXT record in place in the respective zone(s).Submitter affirms the following:
Abuse Contact:
Abuse contact information (email or web form) is available and easily accessible.
URL where abuse contact or abuse reporting form can be found:
For PRIVATE section requests that are submitting entries for domains that match their organization website's primary domain, please understand that this can have impacts that may not match the desired outcome and take a long time to rollback, if at all.
To ensure that requested changes are entirely intentional, make sure that you read the affectation and propagation expectations, that you understand them, and confirm this understanding.
PR Rollbacks have lower priority, and the volunteers are unable to control when or if browsers or other parties using the PSL will refresh or update.
(Link: about propagation/expectations)
Description of Organization
Sealos is a cloud operating system and PaaS provider. We allow users to deploy containerized applications and databases on our platform.
Organization Website: https://sealos.io
Reason for PSL Inclusion
When users deploy services, they are assigned subdomains under our regional domains (e.g.,
my-app.usw-1.sealos.app). These subdomains are controlled by third-party users and content is untrusted.We are requesting the addition of
sealos.appand its regional subdomains to the Public Suffix List to ensure security isolation (preventing cookie tossing/supercookie issues) between different user applications hosted on the same infrastructure.Number of users this request is being made to serve: 10000+ users
DNS Verification