Gregory's Server@fediversereport Anyone can create "social." subdomains.
It does not make it "clear that it's an official government account".
|
Top-level
21 comments
@myrion @inventor I'm saying that's the only way I can see someone getting a *.admin.ch subdomain without it being official, yes. I don't think it's likely to happen. And no, I'm not worried about someone creating social.ad.min.ch (if I'm understanding your examples correctly) to confuse people. It would have happened long ago already, since the Swiss government has been using admin.ch for years now for official communications. @inventor to rephrase my argument most clearly: The Swiss government has been using *.admin.ch for official communication for years. Phishing attacks pretending to be the Swiss government have happened. This doesn't make communication from *.admin.ch any less clearly official. This holds true even when *==social. @myrion It can be from any subdomain under a valid root domain. Examples: "социальные.", "с.", "со.", "sociaux.", "sosyal.", "mastodon."... literally anything. Doesn't matter at all. Only the root domain and certificate matter. @inventor aha! Then I misunderstood your objection. I will say that while it's true, I think it's a bit pedantic. The OP wasn't suggesting, afaict, that "social.any.domain" clearly would be official, but that "social.known.domain" would be clearly official, and sensible - in that it's like the ".well-known" directory on a webserver. Use the known domain, look for the social subdomain and voilà, there's the official social media accounts seems like a useful approach to me. Are you saying that someone in the government can create a rogue "mastodon.admin.ch"? @inventor @siegi @fediversereport I don't understant. As owner of trolliet.info, you mean that anybody can create social.trolliet.info without my conscent and/or knowing? @Faket @siegi @fediversereport @inventor @siegi @fediversereport But since the owner/administrator of admin.ch is the government, what better way to certify a new service than to make it a service.admin.ch? @Faket @siegi @fediversereport @inventor @siegi @fediversereport So? Are you saying that doing a social.admin.ch subdomain is a good thing? I don't understand your point TBH. @Faket @siegi @fediversereport This is false. Establishing a convention may be a cool idea, but it adds nothing to security or "making anything clear". Subdomains mean nothing in terms of validation of legitimacy. @inventor @siegi @fediversereport Are you suggesting that it's not better to have a [social|mastodon|toot|whatever].admin.ch than any other random root domain? @Faket @siegi @fediversereport It makes no difference. @inventor @fediversereport why not? Any random asshole is going to do just as good a job at sucking at running a government's social as the people who do it presently for profit. BTW, I'm the official social account of the government of Abkhazia. @inventor@linuxrocks.online @fediversereport@mastodon.social but you usually recognize the main domain if you live in the country |
@inventor how so? In the Swiss example, the govt controls admin.ch, and no-one else can create those subdomains. Sure, it could be a rogue sysadmin, but that would get discovered and shut down quickly.
Anything from *.admin.ch has official character.