@bender@twtxt.net actually I think it’s a little more nuance than that because for example with salty chat, we have support for DNS based delegation via SRV records and your identity is associated with your Apex Dom name and of course the keys.

I actually don’t understand why Federation and activity pub is so goddamn hard to migrate from one instance to another 🧐

AWS Introduces DNS Failover Feature for Its Notoriously Unreliable US East Region
Amazon Web Services has rolled out a DNS resilience feature that allows customers to make domain name system changes within 60 minutes of a service disruption in its US East region, a direct response to the long history of outages at the cloud giant’s most troubled infrastructure.

AWS said customers in regulated i … ⌘ Read more

@bender@twtxt.net That’s not the problem. The problem is the complex DNS setup and delegation. I’ve gotten it working once before, but it’s not that easy if you don’t intend to run it on the APEX Domain.

So blackholing my Gitea instance’s DNS for the day seemed to have worked 🤣 (if only I had a real target I could have made their fucking crawlers DDoS themselves 😂) – Let’s also see if enabling DDoS proection on the Edge via Vultr’s DDoS capability also helps? 🤔

Our investigation into the suspicious pressure on Archive.today
Article URL: https://adguard-dns.io/en/blog/archive-today-adguard-dns-block-demand.html

Comments URL: https://news.ycombinator.com/item?id=45936460

Points: 500

# Comments: 165 ⌘ Read more

Recursive DNS
I think I did not blog about it, but I switched back to a self-hosted AdGuard Home instance quite some time ago from NextDNS. To reduce my number of subscriptions, but also to increase my control over important infrastructure I use. ⌘ Read more

TLA+ Modeling of AWS outage DNS race condition
Comments ⌘ Read more

“The $12,500 DNS Trick That Hacked Snapchat’s Cloud Servers”

Image

While studying advanced SSRF techniques, I came across a fascinating case where researchers @nahamsec, @daeken, and @ziot combined DNS…

[Continue reading on InfoSec Write-ups … ⌘ Read more

More Than DNS: The 14 hour AWS us-east-1 outage
Comments ⌘ Read more

It’s NOT always DNS
Comments ⌘ Read more

Async DNS Resolution
Comments ⌘ Read more

🤔 💭 🧐 What if, What if we built our own self-hosted / small-web / community-built/run Internet on top of the Internet using Wireguard as the underlying tech? What if we ran our own Root DNS servers? What if we set a zero tolerance policy on bots, spammers and other kind of abuse that should never have existed in the first place. Hmmmm

I keep getting this email occadionally:

Your iCloud storage is almost full

Now for various reasons, I don’t want my children to be using iCloud to store data, files, photos or any of the sort. They’re free to use iMessages, and other Apple services like the App Store, etc, but not storage.

So I’ve set about blocking iCloud Storage API(s) via AdGuard Home tonight as well as ensuring that my local network (client users) cannot bypass DNS policies and get out other sneaky ways, because some applications will just use other DNS servers, or DOH or DOT.

Why not use DNS over HTTPS (DoH)?
Comments ⌘ Read more

How to Enable iCloud Private Relay on Mac
iCloud Private Relay is a fantastic privacy feature that is part of the iCloud+ subscription that helps to protect your internet activity and browsing by obfuscating your IP address (via using a temporary IP address) and encrypting your DNS lookups, so that third parties can’t see what websites you’re visiting. The end result is that … Read More ⌘ Read more

How to Enable iCloud Private Relay on Mac
iCloud Private Relay is a fantastic privacy feature that is part of the iCloud+ subscription that helps to protect your internet activity and browsing by obfuscating your IP address (via using a temporary IP address) and encrypting your DNS lookups, so that third parties can’t see what websites you’re visiting. The end result is that … Read More ⌘ Read more

DNS rebinding attacks explained: The lookup is coming from inside the house!
DNS rebinding attack without CORS against local network web applications. Explore the topic further and see how it can be used to exploit vulnerabilities in the real-world.

The post [DNS rebinding attacks explained: The lookup is coming from inside the house!](https://github.blog/security/application-security/dns-rebinding-attacks-explained-the-lookup-is-coming-from- … ⌘ Read more

How to Flush DNS Cache on macOS Sequoia & Sonoma
If you’re running macOS Sequoia or macOS Sonoma, you might occasionally find yourself in a situation where you need to flush the DNS cache on your Mac. This can be necessary to fix DNS related issues or errors, to clear out outdated DNS settings or records, to resolve issues with certain websites, or even to … Read More ⌘ Read more

How to Use Surfshark DNS on Mac, iPhone, iPad
Did you know that your internet service provider default DNS servers almost certainly track and log your online activity? Basically this means that every time you visit a website or use an internet-connected application from your Mac, iPhone or iPad, your ISP is aware of that. Many ISP’s will not only log and track your … Read More ⌘ Read more

Today I added support for Let’s Encrypt to eris via DNS-01 challenge. Updated the gcore libdns package I wrote for Caddy, Maddy and now Eris. Add support for yarn’s cache to support # type = bot and optionally # retention = N so that feeds like @tiktok@feeds.twtxt.net work like they did before, and… Updated some internal metrics in yarnd to be IMO “better”, with queue depth, queue time and last processing time for feeds.

Fast Flux: The DNS Botnet Technique Alarming National Security Agencies ⌘ Read more

Localhost dangers: CORS and DNS rebinding
What is CORS and how can a CORS misconfiguration lead to security issues? In this blog post, we’ll describe some common CORS issues as well as how you can find and fix them.

The post Localhost dangers: CORS and DNS rebinding appeared first on The GitHub Blog. ⌘ Read more

https://sebsauvage.net/wiki/doku.php?id=dns-alternatifs #dns

Mastercard DNS error went unnoticed for years
Article URL: https://krebsonsecurity.com/2025/01/mastercard-dns-error-went-unnoticed-for-years/

Comments URL: https://news.ycombinator.com/item?id=42793783

Points: 500

# Comments: 151 ⌘ Read more

0xFFFC posts October-November 2024 Monero dev report
0xFFFC1 has posted a second progress report (October 1-14 November 2024)2 for their full-time Monero dev work CCS proposal3:

Last month I worked on multiple PRs. Right now I am working on a few tasks: 1. Investigating wallet-rpc communication with daemon. 2. DNS TXT limitation issue we have.

”`
Reviews:

• ringct: add operator!= for key #9556
  
• p2p: allow comments in banlist files #9558
  
• c … ⌘ Read more”`

Would it make sense for twtxt v.2 to do something similar to bluesky, where you use a domain as you handle by creating a specific DNS record as explained by: https://matthiasott.com/notes/how-to-set-your-domain-as-your-bluesky-handle

Drew DeVault Behind Stallman-Report.org Hit Piece
Some mild DNS sleuthing has revealed the “anonymous” author of the attack on Richard Stallman. ⌘ Read more

Fix MacOS Sequoia Network & Wi-Fi Issues with These 6 Tips
Some MacOS Sequoia users have discovered various networking issues with their Mac since installing the MacOS Sequoia 15 system software update. The reported network problems can range from and include random intermittent connection issues with MacOS Sequoia, inability to connect to the internet, unusually slow internet, DNS resolution failures, problems with VPN services, problems with … [Read More](https://osxdaily.com/2024/10/08/f … ⌘ Read more

@bender@twtxt.net I’m not a yarnd user, but automatically unfollowing on 404 doesn’t seem right. Besides @lyse@lyse.isobeef.org’s example, I could imagine just accidentally renaming my own twtxt file, or forgetting to push it when I point my DNS to a new web server. I’d rather not lose all my yarnd followers in a situation like that (and hopefully they feel the same).

I have a question for the IndieWeb community: What can we do against Webmention spam, except filter it out, when it fails validation? I receive hundreds of invalid Webmentions a day, and even using a filtering DNS server doesn’t seem to help much. But I also don’t want to waste network traffic to access all those spam sites. Is there any good block list I can check first before doing the request for validation? I thought about Akismet, but the API has no such option to only check the submitted URL. ⌘ Read more

The power of control
You know, I’ve found a pretty effective way to reduce my addiction to certain websites: blocking them at the DNS level using NextDNS. It’s a trick I picked up after realizing I was spending far too much time on Hacker News (my addiction to that is gone for quite some time already!). And now? I’ve extended it to a forum I used to frequent multiple times a day. ⌘ Read more

magnet:?xt=urn:btih:78bfb3bb53fb6d159ff91a6f72b05b564da1ef36&dn=Sexual-Misconduct-in-Academia.pdf&tr=udp%3A%2F%2Ftracker.meiodomato.com%3A6969%2Fannounce&tr=https%3A%2F%2Ftracker.meiodomato.com%2Fannounce - Caso alguém queira, irei deixar o torrent para o livro em questão aqui.

**RT by @mind_booster: DN: Ordem para intervenção do SIS suscita dúvidas sobre o acesso das “secretas” aos metadados

A nós, suscita certezas. Não queremos o SIS com acesso aos metadados das telecomunicações dos cidadãos.
Por alguma razão a Constituição restringe esse acesso.
https://www.dn.pt/sociedade/ordem-para-intervencao-do-sis-suscita-duvidas-sobre-o-acesso-das-secretas-aos-metadados-16311858.html**
DN: Ordem para intervenção do SIS suscita dúvidas sobre o acesso das “secretas” aos metadados

A nós, susci … ⌘ Read more

Since I found a cheap lifetime license for AdGuard Premium, I’ll try it on my phone for a while. I’ve also configured it with my strict NextDNS profile. But now my phone not only filters DNS requests to block ads, but also HTTP requests. And while uBlock Origin works pretty well in Firefox on Android, I decided to disable it while using AdGuard to see how the performance compares. ⌘ Read more

**RT by @mind_booster: O Director Nacional da Polícia Judiciária afirmou que espera que eu nunca venha a precisar da PJ, enquanto vítima, devido à minha opinião no tema dos metadados 😶

Uma expressão infeliz… espero eu.

Segue🧵

Podcast Soberania @dntwit @ValentinaM2015
1/
https://www.dn.pt/podcast/soberania/episodio/soberania-ep3-metatados-combate-ao-crime-e-o-direito-a-privacidade-16071953.html**
O Director Nacional da Polícia Judiciária afirmou que espera que eu nunca venha a precisar da PJ, enquanto víti … ⌘ Read more

**RT by @mind_booster: «Metadados: O Tribunal Constitucional tem costas largas»

Artigo de opinião do presidente da D3 @EdSantos754, hoje, no @dntwit.
#DireitosDigitais #Metadados
1/3
https://www.dn.pt/opiniao/metadados-o-tribunal-constitucional-tem-costas-largas-15938285.html**
«Metadados: O Tribunal Constitucional tem costas largas»

Artigo de opinião do presidente da D3 @EdSantos754, hoje, no [@dntwit](https://nitter.net/dntwit “Diá … ⌘ Read more

Prosodical Thoughts: Prosody 0.12.3 released
We are pleased to announce a new minor release from our stable branch.

This is a bugfix release for our stable 0.12 series. Most notably, it fixes a
regression for SQL users introduced in 0.12.2, and a separate long-standing
compatibility issue with archive stores on certain MySQL/MariaDB versions.

It also fixes an issue with websockets discovered by the Jitsi team, some
issues with our internal HTTP client API, and we’ve improved the accuracy of
‘prosodyctl check dns’ in … ⌘ Read more

**RT by @mind_booster: Portugal vai a tribunal. Esforços para adotar diretiva europeia “foram insatisfatórios e insuficientes”
(Avaliação do impacto ambiental)

https://www.dn.pt/internacional/portugal-vai-a-tribunal-esforcos-para-adotar-diretiva-europeia-foram-insatisfatorios-e-insuficientes-15726923.html**
Portugal vai a tribunal. Esforços para adotar diretiva europeia “foram insatisfatórios e insuficientes”

(Avaliação do impacto ambiental)

[dn.pt/internacional/portugal…](https://www.dn.pt/internacional/port … ⌘ Read more

**RT by @mind_booster: We are 636 young people in @auroramalet who are suing the Swedish state for insufficient climate action.

”When the state carries out climate policy that threatens our human rights, it breaks the law.”

#aurora #ClimateTrials #UprootTheSystem
https://www.dn.se/sverige/greta-thunberg-joins-over-600-other-young-people-in-a-lawsuit-against-the-swedish-state**
We are 636 young people in @auroramalet who are suing the Swedish state for insuffici … ⌘ Read more

https://galusik.fr/log/2022-10-16-connman-public-dns.html artix

One year ago, I started using AdGuard Home instead of Pi-Hole to filter DNS requests and block ads and tracking. Yesterday, I switched to NextDNS instead. NextDNS has mostly the same features, but is hosted in the “cloud” and I have one less self-hosted service to care about. AdGuard Home is awesome, but NextDNS seems to be working great as well and also integrates with Tailscale easily. ⌘ Read more

https://github.com/Danamir/dyn-gandi gandi dns

https://github.com/brian2lvls/gandi-automatic-dns

https://doc.livedns.gandi.net/ autohébergement dns gandi livedns

https://www.fdn.fr/actions/dns/ dns

https://www.quad9.net/#/#setup-quad9 dns quad9

https://github.com/Danamir/dyn-gandi autohébergement dns gandi livedns

http://obsd4a.net/wiki/doku.php?id=network:config:unbound_dnssec dns dnssec unbound

https://blog.ght1pc9kc.fr/2020/comprendre-la-r%C3%A9solution-dns-sous-debian.html debian dns

HostuxDNS ⌘ https://dns.hostux.net/en/