Post 3562096 by gilgwath@social.tchncs.de
(DIR) More posts by gilgwath@social.tchncs.de
(DIR) Post #3547794 by adidal@chat.cdstm.ch
2019-01-30T13:36:20Z
0 likes, 0 repeats
Hey ppl is a public pi-hole instance a good idea or its fucking stupid ?
(DIR) Post #3549699 by gilgwath@social.tchncs.de
2019-01-30T14:44:06Z
0 likes, 0 repeats
@adidal If you are cool with all your DNS going through that ... which I would diffidently not be cool with. Not in these days, where so many things depend on your DNS being trustworthy (which is bad design in my opinion, but that's a different tin of worms entirely)
(DIR) Post #3550025 by adidal@chat.cdstm.ch
2019-01-30T14:53:24Z
0 likes, 0 repeats
@gilgwath I mean I wanted to host my own pi-hole but on a cheap vps or something. So according to you it's kinda risky? Installing OSSEC and setting up firewalld ain't enough ?
(DIR) Post #3552710 by gilgwath@social.tchncs.de
2019-01-30T16:32:13Z
0 likes, 0 repeats
@adidal Well, the thing is, you really, really don't want anyone to poison you DNS cache. Opens you up for all sorts of fun MITM attacks. Whats the goal of putting onto a VPS?
(DIR) Post #3560586 by adidal@chat.cdstm.ch
2019-01-30T20:36:11Z
0 likes, 0 repeats
@gilgwathWell fuck. I just wanted something easily accessible from everywhere :pepehands:
(DIR) Post #3562096 by gilgwath@social.tchncs.de
2019-01-30T21:21:08Z
0 likes, 0 repeats
@adidal I mean, dont't get me wrong ... I certainly can be done. Someone has to host DNS after all :-P but I'd really go to some length to protect it very well. But for me it belongs in the same category as running your own mail servers. A lot of work, a lot of damage potential if it goes wrong and little benefit. Maybe there are even DNS services that offer add-filtering in a subscription maybe look at openDNS? they offer premium DNS services... but I don't know the exact offering at the moment