fsebugoutzone.org:9999

       Post AdiIWDpkgBzY6Axw4O by commandlinekid@noagendasocial.com
 (DIR) More posts by commandlinekid@noagendasocial.com
 (DIR) Post #AdhnT86CRntyrghjwO by commandlinekid@noagendasocial.com
       2024-01-10T12:19:31Z
       
       0 likes, 0 repeats
       
       Why do we need sanctioned DNS in 2024?Can someone tell me why a private DNS network does not exist? Or does it?What if all the smart people just &quot;added a custom DNS server&quot; to their computers alongside their regular DNS addresses?What am I missing?
       
 (DIR) Post #AdhnT9xPXS3md0bkWG by FortyTwo@noagendasocial.com
       2024-01-10T12:25:44Z
       
       0 likes, 0 repeats
       
       @commandlinekid I do that for my LAN.It&#39;s the backbone of my spam prevention for the house, plus it lets me hit up network assets by name instead of IP address.
       
 (DIR) Post #AdhnTBWBjdTNT9t2Mi by commandlinekid@noagendasocial.com
       2024-01-10T12:29:06Z
       
       0 likes, 0 repeats
       
       @FortyTwo But why can&#39;t we just replace DNS for the public internet?Meaning, what if I setup mycrazydns.com and scraped all the DNS servers, and just started offering DNS. Then when IBM for instance changed a domain name, because I had 1 gazillion customers, they would have to ALSO update their records on my servers.
       
 (DIR) Post #Adho2i68b0cQeJdq76 by FortyTwo@noagendasocial.com
       2024-01-10T12:42:47Z
       
       0 likes, 0 repeats
       
       @commandlinekid pretty sure you canThere are some DNS backbone servers, and they trump everything else.  So, if you point a domain to an IP address that one of the big boys says is owned by somebody else, you get overwritten.If this wasn&#39;t in place then it would be a free-for-all and DNS would be unusable in a few days.I&#39;m not a DNS expert by any stretch of the imagination.  I&#39;m sure someone more knowledgeable will pipe in momentarily with a better explanation.
       
 (DIR) Post #Adhogj8OA7aPRkmAZU by commandlinekid@noagendasocial.com
       2024-01-10T13:11:26Z
       
       0 likes, 0 repeats
       
       @FortyTwo I don&#39;t understand what you meant by, &quot;Overwritten.&quot;
       
 (DIR) Post #AdhogkWWzqUZkv4xqC by DaemonFools@noagendasocial.com
       2024-01-10T13:28:47Z
       
       0 likes, 0 repeats
       
       @commandlinekid @FortyTwo The root name servers are at the top of the pile. If your records conflict with theirs then your clients will get different results than everyone else.Hijacking usually happens in BGP which is one of the ways routers communicate.A few companies offer DNS filtering which prevents clients from accessing yourcompanyname.ca which was registered 5 minutes ago.
       
 (DIR) Post #AdhoglsBynPfwODmF6 by commandlinekid@noagendasocial.com
       2024-01-10T14:35:16Z
       
       0 likes, 0 repeats
       
       @DaemonFools @FortyTwo  Hmmmmm I don&#39;t know about this.If I set two DNS servers in my settings, it should try the first, then the second I think.I just setup BIND this morning and it works fine. www.fakedomain resolves using Server 1, but if I try to resolve ibm.com it will check my server 2 which is 8.8.8.8. The problem is Firefox is only browser that will pull it up. Brave thinks it is a &quot;Search.&quot; Any ideas how to get brave to try to resolve?
       
 (DIR) Post #Adhoz0uQoYDzmqy2Fs by Fox@noagendasocial.com
       2024-01-10T14:38:34Z
       
       0 likes, 0 repeats
       
       @commandlinekid Back in the old days before DNS servers were all the rage. We had something called a  &quot;hosts file&quot; (it still exists on your system!).It fulfilled the role of DNS, when you got online, you&#39;d go find a copy of this hosts and then use that to get to your website by name and that would keep you in contact if the IP changed for some reason. So this is totally possible to do. The only problem is that if you keep a list, you have to maintain it and if you share it with others...
       
 (DIR) Post #Adhp3IxTeMiIvKRDvs by DaemonFools@noagendasocial.com
       2024-01-10T14:39:21Z
       
       0 likes, 0 repeats
       
       @commandlinekid @FortyTwo Brave Settings &gt; Security and Privacy &gt; Security
       
 (DIR) Post #AdhpOwf7E9Q290AVd2 by Fox@noagendasocial.com
       2024-01-10T14:43:15Z
       
       0 likes, 0 repeats
       
       @commandlinekid ...That&#39;s what have now, in an over simplistic form. We keep lists and entrust people with authoritative lists using a hierarchy as well. Then we register our entry in the list with that authoritative organization and query it when we want to go some place by name.We could split the Internet and you can pick/run your own DNS and it can go anywhere else, nothing is stopping us from doing both. It&#39;s just a list.The Internet sees censorship as damage and will route around it
       
 (DIR) Post #AdhzCptnXuJ9EdtuYi by Fox@noagendasocial.com
       2024-01-10T16:33:07Z
       
       0 likes, 0 repeats
       
       @commandlinekid I clearly haven&#39;t had enough coffee.I run my own DNS servers for caching, I find uncensored DNS servers and run those through a domain block list (blocks the obvious garbage). But yeah, you can totally run an unsanctioned DNS server, nothing stopping you.Hell we could setup multiple and share the modified DNS and call it &quot;No Agenda DNS&quot;. Could go fancy and setup a little load balancer on AWS to have it direct to a dozen DNS providers anyone wants to run, VMs and VPNs!
       
 (DIR) Post #AdiIMKTD9Oj9mkhmKW by commandlinekid@noagendasocial.com
       2024-01-10T20:07:44Z
       
       0 likes, 0 repeats
       
       @Fox Let&#39;s keep playing with it, maybe we could do that.I&#39;m interested in this:1.) As example, let&#39;s say you own itm.com but one day your DNS provider decides to redirect you to 404.2.) I should be able to say, &quot;OH, anyone who is smart better have the DNS server 1.1.1.1 (made up number) as their PRIMARY DNS server so they can resolve it correctly, Before their desktop defaults to 8.8.8.8 which resolves everything else. I think this is potentially coming to America.Now....
       
 (DIR) Post #AdiIWDpkgBzY6Axw4O by commandlinekid@noagendasocial.com
       2024-01-10T20:09:31Z
       
       0 likes, 0 repeats
       
       @Fox I also want to be able to issue a new (fake) zone that is not dependant on ICANNNN  like... ITM.com or even the TLD of .itm. I should be able to do this too.I know it&#39;s all possible but can it be done via just-bind? Or just some standard method? If so, we should try that. Bottom line: We need to be able to replace ICANNNNNN (spelled wrong on purpose) at any-time in the future, by changing one DNS entry on a client.
       
 (DIR) Post #AdiIhOPpg01k6TAWNk by commandlinekid@noagendasocial.com
       2024-01-10T20:11:32Z
       
       0 likes, 0 repeats
       
       @Fox @Bishop brought up a good point, and something I noticed....  I didn&#39;t have a cert for my fake domain, so it jumped to the next thing it found using my secondary DNS server. Question... Can I get a cert using certbot for..... a fake .tld like.... .itm?
       
 (DIR) Post #AdiIm5neJiz9obY9PE by commandlinekid@noagendasocial.com
       2024-01-10T20:12:20Z
       
       0 likes, 0 repeats
       
       @Fox @Bishop  And moreoever, could I register an SSL cert for mydomain.com in the specific instance where I wanted to use my own DNS server instead of the sanctioned servers?
       
 (DIR) Post #AdiJQmamdQog7Jw08G by commandlinekid@noagendasocial.com
       2024-01-10T20:19:44Z
       
       0 likes, 0 repeats
       
       @DaemonFools @FortyTwo  Thanks. It seems to want a url, not a server address but I&#39;ll play with it.