On Tue, 25 Jun 2024 15:14:12 +0100,
Raf Czlonka <rczlonka@gmail.com> wrote:
> 
> At the same time, I wanted to ask for clarification whether the
> proposed change would also work in the same way:
> 
> 	The domain can be either a full name of a host or a trailing
> 	component, in the latter case the domain-string should start
> 	with a period.  The trailing component only matches hosts
> 	that are in the same domain, ie ".example.com" matches
> 	"foo.example.com", but not "foo.test.example.com".
> 

Nope, suggested diff matches .example.com against both foo.example.com and
foo.test.example.com.

Keep in mind that this is black or white list, and I think that keep
wildcard on subdomain level will lead to unexpected blocking or bypasses.

Also, without star symbol I don't understand how to define something similar
to *.foo.*.example.com.

-- 
wbr, Kirill