TechPulseTechPulse
Back to News
Advertisement
Advertisement

⚡ Community Insights

Discussion Sentiment

79% Positive

Analyzed from 3214 words in the discussion.

Trending Topics

#self#domain#tld#domains#https#person#more#org#icann#cost

Discussion (136 Comments)Read Original on HackerNews

goldenarmabout 3 hours ago
Remember when the .tk TLD became free 20 years ago ? Every hobbyist took one, then scammers followed, then Facebook and antiviruses started blocking it.

I remember publishing a website for a class on my .tk domain, the teacher couldn't open it and I almost got a failing grade because of it.

AFF87about 2 hours ago
What a memory you have unlocked. They were everywhere. I remember the urban legend that .tk domains were X% of their GDP
captn3m0about 1 hour ago
10% apparently for .tk. I also remember .tv windfall, which is 8-9% of their GDP.
tyre43 minutes ago
And the .sy boom until startups got enough heat for, you know, funding the Assad regime.
DonHopkins32 minutes ago
At least https://tcl.tk redirects => https://www.tcl-lang.org/
preisschildabout 1 hour ago
Core memory unlocked

Not enough allowance to fund a .com domain, had to use freenom / tk + cloudflare for my first years of self hosting

cjabout 1 hour ago
Double unlock.

In the mid 2000’s, I moderated a domain name discussion forum in exchange for free hosting. “X forum posts per month = x gb of bandwidth”

My goal was to post enough for them to give me WHM access so I could try to resell it.

Those were the days.

dinklebergabout 1 hour ago
Those were the days indeed. A big part for me is probably because I was a teen at the time with little responsibility, but getting to be a part of the wild west days of the internet was a magical experience.
tamimioabout 1 hour ago
tk and cc, the domains i used to use for php reverse shell haha, bring back memories!
paxcoderabout 2 hours ago
>One Person, One Subdomain
singpolyma336 minutes ago
Indeed. That's the necessary
HumanCCF31 minutes ago
Yes, one of the key principles we follow is that all the perks we aim to provide must come with some limit to prevent abuse.
vessenesabout 2 hours ago
Hi there. I've done a bit of work on specifying human-centric identity goals for the internet over the last 10 years. May I suggest you look at Microsoft Vega? https://www.microsoft.com/en-us/research/blog/vega-zero-know... (I have no affiliation).

In brief, I think they aim to solve the most important needs for online identity-gated services in a maximally private way.

For instance, I'd like to see .self offer the following: a single domain to any person in the world with identity blinded. I can imagine two 'tranches': say xxx.v.self for 'verified' and xxx.u.self for 'unverified'.

Both would use a Zero Knowledge proof to confirm they had not already registered a domain; verified would register with you guys or a data broker some PII in case it was needed for verification / checks / etc, while unverified would maintain the promise of one domain = one person, but not allow the TLD or registrars to be able to unblind which person it is.

Use cases like this would be really fantastic. And, obviously could be tested out and tried on a normal domain name while you make your pitch, and put in for the auction / however ICANN is currently managing TLD launches.

HumanCCFabout 2 hours ago
Please submit this to us via our contact form, we will need lots of community input! https://hccf.onmy.cloud/get-involved/
quotemstrabout 1 hour ago
It is good that Microsoft Vega is popularizing zero-knowledge identity-based attestations. It's unfortunate that they're doing so in a relatively inflexible way.

I wish the Vega people had oriented their work around general-purpose zkVMs instead of application-specific ZK circuits. The latter is a fleeting efficiency win; the former is a permanent flexibility advantage. ZK-based privacy advocates shouldn't over-index on proof performance on today's systems when zkVM systems have been making multiple-OOM performance improvements over the past couple of years.

IOW, with Nova, the Vega people are trying to do something very clever (just as the BBS+ people are trying to do something very cleaver) that general-purpose compute wins have made unnecessary.

Something like RISC Zero will let you run arbitrary Rust code under zero knowledge in a few hundred milliseconds with little fuss. Nobody appreciates that identity verification is one special case of a vast set of useful applications enabled by widespread adoption of a ZK compute platform.

greyface-about 2 hours ago
https://hccf.onmy.cloud/wp-content/uploads/2026/06/dot-self....

> Everyone entitled to a subdomain at no cost

How are you going to pay for the (substantial) cost of running a TLD without registration fee revenue? Is this a loss leader for other services? Are you operating on a 100% donation model?

> No parking, squatting, or reselling

How do you plan to tell the difference between a parked/squatted domain and one in legitimate use but offering no public-facing services?

HumanCCFabout 2 hours ago
> How are you going to pay for the (substantial) cost of running a TLD without registration fee revenue? Is this a loss leader for other services? Are you operating on a 100% donation model?

We plan on operating the domain as a public good and are actively seeking sponsors to help fund us. Think of it as a similar model to ISRG and LetsEncrypt.

> No parking, squatting, or reselling

Our rule of one person per subdomain will hopefully prevent this at scale, though it will admittedly be more difficult to examine any particular domain so closely. We may have to implement some type of heartbeat where the owner of said domain has to respond within a certain amount of time.

SahAssarabout 2 hours ago
> Think of it as a similar model to ISRG and LetsEncrypt.

In that case it was started by an institution (mozilla) with a lot of heft in the area (mozilla's CA program is one of the most broadly used) and was backed by other orgs (google) that had a vested interest in it's success. I'd be interested to hear which potential sponsors you see in a similar situation here?

> rule of one person per subdomain

What is the plan to (without costly overhead or cost to the end user) validate who is an actual person? Even large corporations with loads of resources have problems with this without resorting to treating it as if a person equals a credit card number.

HumanCCFabout 1 hour ago
> In that case it was started by an institution (mozilla) with a lot of heft in the area (mozilla's CA program is one of the most broadly used) and was backed by other orgs (google) that had a vested interest in it's success. I'd be interested to hear which potential sponsors you see in a similar situation here?

We are reaching out to companies who operate in the self-hosted space, academia, ISPs, registars, as well as digital rights orgs. We believe they would be aligned with this mission and ultimately benefit from such a TLD existing!

> What is the plan to (without costly overhead or cost to the end user) validate who is an actual person? Even large corporations with loads of resources have problems with this without resorting to treating it as if a person equals a credit card number.

There are a few emerging technologies we are evaluating to help with this but have not settled on one just yet. Whatever we choose, we will start small and go from there. Worst-case scenario, we start with the credit card approach and iterate. This will ultimately all be a part of the evaluation process we go through with ICANN.

al_borlandabout 2 hours ago
How is one person per subdomain enforceable? How is a person uniquely identified and tracked?
dom96about 2 hours ago
My guess is by using ID verification similar to how I do it on https://onlyhumanhub.com/
AnthonyMouseabout 1 hour ago
> How are you going to pay for the (substantial) cost of running a TLD without registration fee revenue?

Is it actually a substantial expense? The TLD itself only has to publish the nameserver records, which generally have a TTL of about a day. A DNS response is a few hundred bytes. Big DNS providers like Google and Cloudflare would make requests for every actively used domain every day, but then cache them. Smaller providers wouldn't cache as well but also wouldn't each request every domain every day. For e.g. a million personal domains, ballpark estimate is somewhere in the few TB a month of traffic. Maybe a little over personal hobby project money but definitely not outrageous for a small non-profit organization.

> How do you plan to tell the difference between a parked/squatted domain and one in legitimate use but offering no public-facing services?

This is the easy one. Squatters buy domains because they want to sell them. To sell them they have to make it publicly known to prospective buyers that the domain is available for sale. So then if anyone lists the domain for sale anywhere, you make them prove that they own it (which any actual buyer would also have to do in order to not get scammed) and when they do the domain is forfeit.

It's kind of sad that we don't do that for all domains. Domain squatters can go to hell.

greyface-30 minutes ago
Much of the cost here comes from compliance with the ICANN gTLD program structure, not from running the underlying technical infrastructure (which is not limited to DNS - you also need EPP/RDAP/etc). See https://www.icann.org/en/registry-agreements for (hundred+ page) documents outlining registry responsibilities. Registries can outsource some of this to an ICANN-accredited "registry service provider", but should expect to pay upwards of hundreds of thousands of dollars yearly for the privilege.
madsushi42 minutes ago
It costs ~$200,000 to apply for a TLD, and there's an ongoing renewal cost in the tens of thousands of USD.
HumanCCF27 minutes ago
For this application round, ICANN is running an Applicant Support Program, or ASP. The applicants seeking to apply for a TLD this round who qualify for the ASP will have a substantially reduced application fee, among other benefits. Our organization is one such org who has qualified for the ASP so we will not have to pay the full $227,000 application fee.
AnthonyMouse40 minutes ago
That's definitely not a cartel then.
prepend33 minutes ago
Is it really that expensive to run a TLD? Name servers are notoriously long running on ancient spec servers.

I’m guessing, if designed well, the registration process could run on lightweight infrastructure. Maybe $1-5k total per year, not counting time. So it’s enough for a fun hobby project.

pavel_lishinabout 2 hours ago
It's not clear whether they're actually talking about domains or subdomains there, which is a worrying sign from a potential registrar.
favoritedabout 2 hours ago
Any domain that isn't one of the Top Level Domains is also a subdomain.
maximilianthe115 minutes ago
Isn't the actual top level domain an empty one after TLD? Looking like «.com.» with trailing dot
psychoslaveabout 1 hour ago
Might be a public service? I guess many countries already had such a thing with running cost several order higher than such a thing as a TLD, operating for centuries now.
bananamogulabout 3 hours ago
Hold up...why isn't .self listed here:

https://www.iana.org/domains/root/db

Is this just an idea at this point, or some kind of "you have to use our DNS to resolve .self domains" scheme - ?

HumanCCFabout 3 hours ago
This is an idea at this point, the next round of gTLD applications is currently open and we are in the process of applying and we are trying to garner support!
OsrsNeedsf2Pabout 3 hours ago
TIL https://newgtldprogram.icann.org/en/application-rounds/round...
NewJazzabout 2 hours ago
Oh god not this shit again.

Inb4 they give away .docx

plopzabout 3 hours ago
Could do something like .brave and just sidestep ICANN?
jazzyjacksonabout 3 hours ago
With your hosts file or running a DNS on localist you can do whatever you want
DonHopkins25 minutes ago
Oh great, an entire tld dedicated to a BAT shitcoin crazy crypto scam. Don't we already have enough of those?
paul7986about 3 hours ago
So this is my iCloud on the web for AI agents to pay me for access to my content (Cloudflare allows the bots in upon paying) :-)

Cloudflare offers this now (their Pay to Crawl service) but its not geared towards every human getting paid for their content. As of today Facebook and other social media platforms profit from our content....not us!

TZubiriabout 2 hours ago
Domain names are not centralized, there is no central entity that controls an approved list of kosher domains.
zamadatix40 minutes ago
This is practically useless information. I don't mean that in the "nearly useless" slang sense, I mean a literal "this information becomes irrelevant once you look at practically applying it" sense. E.g.:

- Centralized authorities for IP & DNS assignment? You (+anyone else you can convince) can just ignore that and it'll work in your bubble anyways!

- No centralized authorities for IP & DNS assignment? You (+anyone else you can convince) can just ignore that and it'll work in your bubble anyways!

My above pedantry aside, the article is explicitly about "The Internet" (still using the capital "I" oft forgotten about these days). I.e. the worldwide bubble which has centrally controlled assignment via ICANN/IANA, separate from other systems using the DNS or IP protocols. That's why it talks about ICANN and why bananamogul mentioned .self has not been centrally registered with IANA yet.

samgranieriabout 1 hour ago
I’m just using .home.arpa for my self hosted stuff. Free, just have to deal with TLS root cert trust, but once that’s down; you’re golden.
ahoka44 minutes ago
.internal works fine now.
mklabout 3 hours ago
Site errored out and gave me three different error messages as I reloaded. I guess it's self-hosted on something underpowered, and dynamic where static would do the job?
HumanCCFabout 3 hours ago
Indeed, this response is way more than we expected. Trying to set up a web cache now.
9devabout 3 hours ago
Shotgun on your.self! That’s going to yield a ton of great second level sub domains :)
HumanCCFabout 2 hours ago
We are probably going to reserve some of the more obvious ones for specific purposes, e.g. my.self automatically pointing to a homepage on your local network. As we go through the gTLD evaluation process we will be keen to solicit feedback from the community on more specifics!
OJFord4 minutes ago
And the slang and typos? (ur.self, mi.self, his.self, there.self, ther.self, theyre.self, they.self, ...)
myself248about 1 hour ago
Hey now!
Hugsboxabout 2 hours ago
go.fuck.your.self would be a pretty good one
laszlokorteabout 2 hours ago

  write.it.your.self
  think.4.your.self
  written.by.my.self
all CNAME -> claude.ai
tbossanovaabout 3 hours ago
treat.your.self
catfish-1234about 3 hours ago
hug.your.self
DonHopkins22 minutes ago
serve.your.self

dancing.with.my.self

reference.self

interest.self

pleasure.self

gratification.self

b.true@to.thine.own.self

touch.a.touch.a.touch.a.touch.me

https://www.youtube.com/watch?v=x92ccvZCzlg

sudonemabout 1 hour ago
We should probably just bring back Geocities at this point.
IgorPartolaabout 1 hour ago
Neocities exists and you are welcome to it :)
sudonemabout 1 hour ago
TIL. Nice.
Terr_37 minutes ago
Somewhat related, in case you missed it a few weeks ago, Oldavista (Altavista)

https://news.ycombinator.com/item?id=48447111

stanfordkidabout 2 hours ago
I don't fully understand how this works... who regulates and defines what is "self-hosted" or "ethical technology"... I feel you can't really solve the distributed consensus and governance problem by just introducing a new domain suffix.
prepend35 minutes ago
I tried to leave a comment and it errored out and said “please leave a valid email.” I tried 6 different addresses at prepend.com.

It’s weird when sites have invalid email checks.

an0malous21 minutes ago
What are some cool TLDs we could crowdfund? .app and .xyz were nice but the squatters have taken over already
Advertisement
functionmouseabout 3 hours ago
.me is cooler, but...

That all the cool 2-letter TLDs are designated as country codes was an extraordinary mistake that will have unpredictable and devastating consequences long into the future.

HumanCCFabout 3 hours ago
Our goal is for .self to be more than just another TLD string, we want to specifically empower the self-hosting use case with local clients that integrate directly with the TLD and operate shared services like mail servers as a public good. We want to dramatically simplify the effort it takes to set up a domain for homelabs and offer free services that are directly tied to the domain like email.
quotemstrabout 3 hours ago
And you needed a gTLD for this task why?
HumanCCFabout 2 hours ago
We don't necessarily, however there are many benefits for doing so. We could simply purchase a domain and then build our initiative beneath it but then everything we do would be beneath that domain, meaning there would be two dots in what is our effective TLD. That would also mean we are a bit beholden to whichever TLD we are beneath and also whichever registrar we purchased our domain from. With the services we hope to offer around things like TLS certs and emails, it just makes more sense for use to own the whole thing from the root.
namegulfabout 1 hour ago
That's a popular tld for 'me' domains, like you said it's closer to .self in meaning but has better appeal

However .me (https://namegulf.com/tld/cctld/me) is a ccTLD managed by the Government of Montenegro, they set their own rules

9devabout 3 hours ago
The only mistake was not opening the root namespace altogether. It’s just a money grab.
microgptabout 3 hours ago
The only mistake was not putting all US domains under .us, now the US has an an exorbitant privilege to print and enforce rules on new TLDs.
kmoserabout 2 hours ago
What do you mean by "US domains?" Domains registered by US citizens? Hosted in the US (in which case does that include territories)? Regardless of the definition, I don't see an easy way to do this, nor a reason to, since domains can change hands (and hosts) across countries.
dgellowabout 3 hours ago
I mean, that wasn’t done by mistake
AlienRobotabout 2 hours ago
I think letting anyone make any TLD is a bigger mistake.

.zip .pdf .mp3

I'd like to thank Caribbean island of Anguilla for having a ccTLD that helps identify which websites aren't worth your time in one quick look.

croesabout 3 hours ago
How about .mine?
LorenDBabout 3 hours ago
Looks like we've hugged it to death.
HumanCCFabout 3 hours ago
Indeed that appears to be so O_O. Our site is of course self-hosted, this is quite the response. Will have to troubleshoot what the bottleneck is!
red_hareabout 3 hours ago
Apt for self-hosting
gorgmahabout 3 hours ago
yes and it's not even on the front page yet lol
LorenDBabout 3 hours ago
It's #10 on front page for me.
artyomabout 1 hour ago
The reason why this won't work is right there, in the original link itself.

They're allowing comments and obviously the first thing there is a scam.

No way any goodwill on the Internet is going to prosper. Not anymore.

iamnothereabout 3 hours ago
Better charge an arm and a leg for it, or people will complain that it’s too cheap and argue for blocking it everywhere.
forestoabout 3 hours ago
What is the expected price range for registration and renewal under this TLD?

Will there be any assurance that renewal prices will remain fairly stable, rather than being significantly raised after customers grow attached to their domains (a practice that seems to be common with new gTLDs)?

hananovaabout 2 hours ago
It simply cannot be both free and free choice of domain.

If it has both, it will be squatted to uselessness, and blocked everywhere because of phishing scams everywhere.

You can either make the domains cost money, which seems counter to the entire point, or disallow choosing the domain, instead handing out free what3words style names.

HumanCCFabout 1 hour ago
We have considered this, all of these things will be examined during the evaluation process of the application with ICANN before any approval to operate the TLD is granted. We could also police our domain and revoke users who use it for abuse but that may be too costly. But you are right that fundamentally we must protect the reputation of the TLD at all costs and that will require imposing certain limits on its use.
applfanboysbgonabout 2 hours ago
You should read their proposal. Specifically, the first "core feature": one person, one domain. If you want to squat on a domain, go for it -- it's yours, and that's the only domain you're getting.

I suppose this will be done by ID verification, which is a complete and total non-starter for me, but they do have a vision of some kind.

hananovaabout 1 hour ago
I've read it, I don't believe it will be effective, even with actual physical ID verification. Scammers can get more IDs, for example by way of scamming.
koolala43 minutes ago
A free tunnel would be a dream. This would be a great initiative.
LelouBilabout 1 hour ago
Can someone explain how the "core features" would work ?

How/Why is this linked to a TLD and not a hosting provider ?

HumanCCF37 minutes ago
The point is that you are your own hosting provider! We are trying to cater to self-hosters so our goal is to make it as easy as possible for someone with their own homelab to get a domain and have it pointed at the services they want to host.
anothereng39 minutes ago
I think is a good goal to pursue.
pavel_lishinabout 2 hours ago
> One Person, One Subdomain

> - Everyone entitled to a subdomain at no cost

One subdomain, or one subdomain? Would I be entitled to something like "pavel.hosts.self"?

Hugsboxabout 2 hours ago
Seems like an idea that would be abused badly, quickly
Advertisement
robertlagrantabout 3 hours ago
Will Self[0] is going to love this.

[0] https://en.wikipedia.org/wiki/Will_Self

cherryteastainabout 3 hours ago
In practice sadly many of these more obscure TLDs seem to be more expensive than more 'normal' ones like .org
jdiffabout 2 hours ago
Some of them, the more corporate or tech-focused ones like .ai or .inc or .tech or .llc. Very many of them are comparable within a dollar of .org.
PaulDavisThe1stabout 2 hours ago
Seems that my.self is already taken. Moving right along, then ...
gpt5about 3 hours ago
Feels like putting a flag on yourself that you are an easier target (security vulnerabilities, ddos, etc.)
DonHopkins33 minutes ago
SELF: The Power of Simplicity

DAVID UNGAR (ungar@self.stanford.edu)

Computer Systems Laboratory, Stanford University, Stanford, California 94305 RANDALL B. SMITH† (rsmith@parc.xerox.com) Xerox Palo Alto Research Center, Palo Alto, California 94304

Abstract. SELF is an object-oriented language for exploratory programming based on a small number of simple and concrete ideas: prototypes, slots, and behavior. Prototypes combine inheritance and instantiation to provide a framework that is simpler and more flexible than most object-oriented languages. Slots unite variables and procedures into a single construct. This permits the inheritance hierarchy to take over the function of lexical scoping in conventional languages. Finally, because SELF does not distinguish state from behavior, it narrows the gaps between ordinary objects, procedures, and closures. SELF’s simplicity and expressiveness offer new insights into objectoriented computation.

To thine own self be true. —William Shakespeare

https://bibliography.selflanguage.org/_static/self-power.pdf

arjieabout 2 hours ago
Just use cloudflare with static hosting for things like this. Doesn’t load for me.
HumanCCFabout 2 hours ago
We did not expect this level of response, it should be reachable now.
sikozuabout 3 hours ago
Wanted to find out more but it looks to be down. Unfortunate.
byte_0about 1 hour ago
mine.my.own.my.precious.self
fragmedeabout 1 hour ago
I've been looking to get into the TLD game. It's gonna cost about $600k, and it's a coin toss as to whether or not you'll get your money back. The two I've been eyeing, is .ion and .ness. Anyone want to go in on either of those with me?
28304283409234about 1 hour ago
treat.yo.self!
Advertisement
mattrighettiabout 2 hours ago
my.self is going to be sold for millions
greenavocadoabout 2 hours ago
I use netbird.io for my home lab and all my connected devices are reachable to each other without manual firewall hackery
comrade1234about 3 hours ago
Good luck getting your outgoing emails accepted by Gmail and outlook.
HumanCCFabout 2 hours ago
We plan to operate a shared mail server than can be used by users of the domain and we will work to ensure it is trusted by imposing usage limits. We will assume that every endpoint in our domain is someone's personal homelab, meaning small-scale use. For large mailing campaigns and newsletters there are plenty of services to choose from that enable those but for just sending personal emails, it should work.
quotemstrabout 3 hours ago
ICANN and its consequences have been a disaster for the internet namespace.
type0about 2 hours ago
I CANN, YOU CANN, Yes We CANN!
jklinger410about 3 hours ago
This is just a fact. It's a ponzi scheme.
microgptabout 3 hours ago
I am disappointed that icannt.org is taken and is not an alternative root.

Edit: I've been rate limited because of this comment, apparently. Account burned - will make a new one. Dang says below it's because of flagged comments but I don't see many flagged comments in my history.

dangabout 2 hours ago
Of course we wouldn't rate limit you, or anyone else, for an innocuous comment.

We rate limited you because of flamewar comments you posted in another thread, like this one: https://news.ycombinator.com/item?id=48723651. You posted over 50 times in that thread, and many of your comments there broke the site guidelines. That's abusive. If we didn't rate limit accounts for doing that, we might as well have no guidelines or restrictions at all.

dorianmariecomabout 3 hours ago
it.self
TZubiriabout 2 hours ago
>One domain per person

How will you ensure this?

hoselabout 3 hours ago
gofuckyour.self
yamilloveabout 3 hours ago
lovethy.self
teachabout 2 hours ago
tothineown.self/be/true
axusabout 3 hours ago
I've started using .internal
whartungabout 3 hours ago
As I understand it, if you want to use domains internally for your home ("home") network, there's some DNS support for "home.arpa"[0].

0 - https://www.rfc-editor.org/rfc/rfc8375.html

mawiseabout 1 hour ago
I've been using .lan, referenced in rfc6762[1] as a good alternative to the multicast .local

> We do not recommend use of unregistered top-level domains at all, but should network operators decide to do this, the following top-level domains have been used on private internal networks without the problems caused by trying to reuse ".local." for this purpose:

      .intranet.
      .internal.
      .private.
      .corp.
      .home.
      .lan.
[1]: https://datatracker.ietf.org/doc/html/rfc6762
mklabout 3 hours ago
That's no use for self-hosting unless all your users are on your private network.
warpechabout 3 hours ago
Tailnet and Magic DNS make it easy to bring other people or devices to your network, including simple authentication mechanisms to know who is who
Ditiabout 2 hours ago
A VPN is literally a… (Very) Private Network.