Skip to content

Instantly share code, notes, and snippets.

@tinogomes
Last active November 13, 2024 15:10
Show Gist options
  • Save tinogomes/c425aa2a56d289f16a1f4fcb8a65ea65 to your computer and use it in GitHub Desktop.
Save tinogomes/c425aa2a56d289f16a1f4fcb8a65ea65 to your computer and use it in GitHub Desktop.
Public DNS Pointing to localhost (127.0.0.1)

Available Public Wildcard DNS Domains pointing to localhost (127.0.0.1)

The best way to safely and securely use local domains pointing to 127.0.0.1 is to edit your local settings (/etc/hosts) and add your own settings. Keep in mind if you want to use subdomains, you need to enter all variations.

Example:

# Adding bottom of your current file /etc/hosts
################# MY LOCAL DOMAINS
127.0.0.1 local.com admin.local.com
127.0.0.1 domain1.com
127.0.0.1 api.domain1.com

I HAVE NO RESPONSIBILITY FOR ANY DOMAINS LISTED HERE, OR IN THE COMMENTS, AND IF ANY OF THEM CAPTURE ANY DATA TRANSMITTED BY THE HTTP REQUEST. AT ANY TIME, ANY OF THE DOMAINS LISTED IN THIS ARTICLE MAY STOP WORKING (EXCEPT localhost).

It turns out that some kind hearted people already set up wildcard domains for you already. You can use any domain below and/or any subdomain of these and they currently resolve to 127.0.0.1 but could switch at any time to resolve somewhere else. Here's the list of ones I know about. Let me know if there are more!

Of course, you can setup your own local domain.

Need to use SSL?

sources:

IF YOU ARE COMMENTING TO SHARE A NEW DOMAIN, PLEASE ADD A POINT VERIFICATION LINK TO [check it](https://dnschecker.org/#A/your-domain)

@AndrewJMcDonald
Copy link

*.lndo.site

@quetzalcoatl
Copy link

127-0-0-1.org.uk seems to be down, with and without prefix

@RoSk0
Copy link

RoSk0 commented Jun 19, 2023

Today lots of my development environments suddenly stopped working because uBlock Origin extension for Firefox included this domain from the EasyPrivacy list referencing this gist.

Please remove lndo.site from this list. It is a valid development setup for the Lando project. lndo.site is used by default in the proxy configuration to simplify developers life.

@almunnings
Copy link

almunnings commented Jun 20, 2023

There should be a proper policy around adding domains to this and future iterations of this list, as legitimate useful domains for development tools get caught up in the hyperbole.

easylist/easylist#16372 has good conversation on the topic.

@xurizaemon
Copy link

@almunnings my read of it is that this list is "here's a convenient list of DNS pointing to 127.0.0.1" which was interpreted as "here's a list of threats"

DNS Rebinding attacks exist, but mostly not on a wildcard with a high TTL. And domains are cheap, attackers will get their own.

@tinogomes
Copy link
Author

tinogomes commented Jun 20, 2023

@xurizaemon You understand the propose of this gist.

Anyway, I added an opening paragraph, explaining that if someone wants to be 100% secure in using a domain pointing to 127.0.0.1, they should make their own settings on their local machine.

Today, of the domains listed here, I have some responsibility for the cefgo.com and local.sisteminha.com domains, as they are under my responsibility. And as written, it can crash at any time.

@tinogomes
Copy link
Author

And thank you all for comment here. I hope this gist continues to be useful to everyone.

@synercoder
Copy link

For work I have registered my own domain to use: localfabriek.nl.

@synercoder
Copy link

Also the last paragraph uses the url dsnchecker.com, so dsn instead of dns and .com instead of .org ;)

@tinogomes
Copy link
Author

Also the last paragraph uses the url dsnchecker.com, so dsn instead of dns and .com instead of .org ;)

@synercoder thank you for typo fixes

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment