fsebugoutzone.org:9999

       Post ASY0Rm8kuydB5txfTU by lanodan@queer.hacktivis.me
 (DIR) More posts by lanodan@queer.hacktivis.me
 (DIR) Post #ASY0RgUrtqknakGF6m by cks@mastodon.social
       2023-02-10T16:42:05Z
       
       0 likes, 0 repeats
       
       My current temptation is seeing how badly my desktop would explode if I switched from my hand-crafted Unbound local resolver (with various DNS zones shunted places) to systemd-resolved and its ways of steering DNS resolution around. Resolved has some virtues, like everyone will cooperate with it (and I have some things that would do that).Blog post about it:  https://utcc.utoronto.ca/~cks/space/blog/linux/SystemdResolvedConsidering
       
 (DIR) Post #ASY0RiKJ65UhGZKpvM by cks@mastodon.social
       2023-02-10T19:04:30Z
       
       0 likes, 0 repeats
       
       TIL that my libvirt dnsmasq isn&#39;t actually serving some of the names I thought it was serving. Things were working because dnsmasq passed them through to my local resolver, which was configured to serve them. But when I persuaded systemd-resolved that dnsmasq was the authoritative source, well, you can guess what happened next.(Nothing. That&#39;s what happened next. Which is bad if you want to turn names into IP addresses.)
       
 (DIR) Post #ASY0RizQdCO5K6Zg1I by cks@mastodon.social
       2023-02-10T19:32:48Z
       
       0 likes, 0 repeats
       
       At least I could now in theory drop Tailscale onto my office desktop machine without having my DNS configuration explode (like everyone sensible, Tailscale wants to work through resolved). Not making my firewall configuration explode is another issue entirely, since I already have an &#39;ip rules&#39; setup and many iptables rules.
       
 (DIR) Post #ASY0RjZwRRav9Lepvs by cks@mastodon.social
       2023-02-10T20:00:40Z
       
       0 likes, 0 repeats
       
       I&#39;ve dutifully renamed my local libvirt machines (in DNS) from &lt;something&gt;.local to &lt;thing&gt;.kvm, because .local is reserved for multicast DNS and things yell at me for using it. I&#39;m not taking bets on how long I&#39;ll be typing &#39;ssh &lt;thing&gt;.local&#39; by reflex, or how long changing it will make me feel vaguely irritated.
       
 (DIR) Post #ASY0RkDe3pLz8UEXom by schiermi@frankfurt.social
       2023-02-10T20:13:45Z
       
       0 likes, 0 repeats
       
       @cks isn&#39;t it home.arpa nowadays?
       
 (DIR) Post #ASY0RlDKMUh4Dn5nxg by cks@mastodon.social
       2023-02-10T20:17:56Z
       
       0 likes, 0 repeats
       
       @schiermi I can&#39;t keep up with all of the special usage TLDs, so I basically threw a dart (and hit a TLD I saw someone use in an example). I would have thought that some TLDs had been fenced off for local use, but apparently mostly not.(In the pre-many-TLDs days, this was not much of a concern. Now if you camp on a random one it may get used for real, causing sadness all around.)
       
 (DIR) Post #ASY0Rm8kuydB5txfTU by lanodan@queer.hacktivis.me
       2023-02-10T20:26:17.688919Z
       
       0 likes, 0 repeats
       
       @cks @schiermi Well it’s why you should use an actual domain instead of camping on a random one.And if you want to keep things short, resolv.conf has search (which still works with subdomains).