Skip to content

pinheadmz/holdmyhand

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
lib
lib
 
 
scripts
scripts
 
 
src
src
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package.json
package.json
 
 

Repository files navigation

holdmyhand

A plugin for hsd that expands the root name server blocklist to protect the user from looking up dangerous top-level domains.

⚠️ This is an experimental plugin and should not be used in production ⚠️

⚠️ This plugin is currently unusable until handshake-org/hsd#558 is merged in hsd ⚠️

Usage

hsd --plugins <path/to/holdmyhand>

Filters

  1. Adds to blocklist integers 0 through 255 (interpreted as TLD strings)
  2. Adds to blocklist extra IETF reserved names
  3. Forces ICANN resolution of TLDs added since HNS mainnet launch:
  • amazon
  • xn--cckwcxetd ("amazon" in Japanese)
  • xn--jlq480n2rg ("amazon" in Chinese)
  • hotel
  • idn
  • kids
  • music
  • spa
  • web
  • webs
  • merck
  1. Attempts to block lookup of punycode names that may be homographs of ICANN TLDs

Examples with log messages from hsd:

$ dig @127.0.0.1 -p 25350 handshake.cοm

[warning] (holdmyhand) Blocking lookup request for name xn--cm-jbc (reserved homograph: com)

$ dig @127.0.0.1 -p 25350 starservice.music

[warning] (holdmyhand) Forcing ICANN lookup for name music

Dependencies

This repository minimally imports and vendors code from these MIT-licensed open source projects:

https://github.com/bestiejs/punycode.js

https://github.com/vhf/confusable_homoglyphs

Homograph detection is based on this project:

https://github.com/namebasehq/idn-homographs

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

9 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages