`use=web` default no longer works as https://checkip.dyndns.org is no longer reachable anymore

Question

`use=web` default no longer works as https://checkip.dyndns.org is no longer reachable anymore

wheelerlaw opened this issue 9 months ago · comments

https://checkip.dyndns.org is not reachable (the plain HTTP one is though). The default option for use=web should be changed to one that is working.

Lenard Hess · Answer 1 · Thu Nov 23 2023 19:09:27 GMT+0800 (China Standard Time)

ddclient will choose http/https depending on the URL by default.
There is the option to force every connection to use HTTPS - the -ssl option.

Did your configuration have https in the URL or did you set the -ssl parameter?

Braxton Lowers · Answer 2 · Wed Nov 29 2023 13:13:25 GMT+0800 (China Standard Time)

I recently observed the same issue. Default ddclient.conf sets https as the only option because of the config line
ssl=yes # use ssl-support. Works with
My workaround (probably sub-optimal though, better solution would be to change default use=web) was to turn off ssl in the config, which allowed http://checkip.dyndns.org. Using
ssl=no

Note that this still used SSL when reaching out to my DNS provider according to sudo ddclient -daemon=0 -debug -verbose -noquiet so API keys were never send over plaintext.

Brian Read · Answer 3 · Thu Nov 30 2023 16:52:03 GMT+0800 (China Standard Time)

Also see #309

Lenard Hess · Answer 4 · Fri Dec 01 2023 06:18:44 GMT+0800 (China Standard Time)

The current ssl flag acts as a "Force SSL on everything" flag. It might be worthwhile to have separate flags for "Use SSL by default unless specified (aka. any URL without HTTP/HTTPS scheme prefix) and another flag for "Force HTTP scheme to use HTTPS - which might not work"

I haven't dug deep into this but I'd assume that every single URL passed to ddclient can be made either HTTP or HTTPS so the SSL support is selectable. In that case the SSL flag is merely a convenience flag to auto-upgrade everything to HTTPS.
If there are URLs hardcoded to HTTP, that needs further investigation.

Koenraad · Answer 5 · Sun Dec 03 2023 17:02:40 GMT+0800 (China Standard Time)

FWIW, I have intermittent problems just pinging checkip.dyndns.org.
I checked because I configured ddclient to send messages. Since a while I get intermittent messages like

WARNING:  cannot connect to checkip.dyndns.org:80 socket: IO::Socket::INET: Bad hostname 'checkip.dyndns.org'
WARNING:  found neither ipv4 nor ipv6 address

and
WARNING: found neither ipv4 nor ipv6 address
I just changed to loopia, will await results.

Lenard Hess · Answer 6 · Thu Jan 04 2024 23:44:46 GMT+0800 (China Standard Time)

With #608 merged you can now force the usage of HTTP by prefixing the URL with http:// even when the ssl config option or command line option is enabled