Lets encrypt for freedns url on website


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: robota.us.to

I ran this command:(I am using gitlab so it was an automated thing)

It produced this output: too many certificates already issued for: us.to: see https://letsencrypt.org/docs/rate-limits/

My web server is (include version):gitlab 11.1.4

The operating system my web server runs on is (include version): Ubuntu 16.04

My hosting provider, if applicable, is: none

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no


#2

Hi @Hunterhusker,

Let’s Encrypt has rate limits to ensure fair usage:

There’s no way for Let’s Encrypt to tell the difference between a personal domain, a corporate domain, a university domain, and a free DNS domain unless the domain owners contact us (or the Public Suffix List) and tell us about their situation. (Let’s Encrypt also doesn’t have the resources to go out and proactively research the policies of all the free DNS providers.) Therefore, free DNS services are subject to the rate limit by default in the same way as any other domain.

Your best options are to get the administrators of the service to request a rate limit exemption, or to switch to a different free DNS provider which has already done this.

Sorry for the inconvenience!


#3

Would you please recommend to me a free dns provider that has already done this, or is there a list out there for figuring it out. The dns site I used is a huge one where anonymous people provide free sub domains, so finding a way to contact them would be relatively impossible. Thank you for all of your help, hopefully I can get this working before the competition starts in September.


#4

This isn’t a great answer, but the Public Suffix List is totally public.

https://publicsuffix.org/list/

If you open the list and go down to the “BEGIN PRIVATE DOMAINS” section heading – it’s very far down – you can look through the organizations and domains in the list. Most of them aren’t DNS services, but the ones that are are usually obvious. (The UK Home Office, no. A company with “DNS” in its name and dozens of short domains, probably yes.)

Let’s Encrypt’s rate limit adjustment list isn’t public.


#5

Hello,

How do I request a rate limit exemption ? I’m the owner of us.to domain and often get such requests by people using my domain available publicly.

Thanks in advance.
Chris


Spectrum ISP prevents getting certificate
#6

Hello! :smiley: The rate limiting documentation schoen linked above mentions it – you have to fill out this form:

If it’s feasible for your usage, I’d also suggest submitting the domain to the Public Suffix List:

https://publicsuffix.org/learn/

The Public Suffix List maintainers don’t appreciate submissions just intended to short-circuit Let’s Encrypt rate limits, but the cookie security benefits are very relevant to dynamic DNS services.


#7

Thanks, I just filled the letsencrypt form. I’ll look at the public suffix too.

Greetings,
Chris


#8

When do you think it will be approved by. I just tried again and it wouldn’t work yet. I’ll keep trying though love your domain name. :slight_smile:


#9

This process normally takes 1-2 months in all, so I don’t think continuing to try will yield results quickly, unfortunately.


#10

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.