view the rest of the comments
Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil.
-
No spam.
-
Posts are to be related to self-hosting.
-
Don't duplicate the full text of your blog or readme if you're providing a link.
-
Submission headline should match the article title.
-
No trolling.
-
Promotion posts require active participation, with an account that is at least 30 days old. F/LOSS without a paywall has exceptions, with requirements. See the rules link for details. Tags [CBH] or [AIP] are required, see the links in Rule 8 for details.
-
AI-related discussions and AI-involved promotional posts have additional requirements for tagging, as noted in Rule 7 and the AI & Promotional Post Expanded Rules post, and find example disclosures here.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
Depending on provider and intended purpose… strictly speaking, a DNS server tells your computer that
example.comresolves to169.254.169.254and nothing more.However, for example, if your DNS provider adds ad blocking, they may choose to change
ads.example.comfrom169.254.169.254to127.0.0.1thereby preventing any advertiser JavaScripts from being requested. This is fine and all, but you’d have no way to be automatically alerted if they changed it to123.234.123.234and serve their own blank scripts.If for example your DNS provider provides region bypass for streaming providers, they could resolve
streaming.example.comfrom169.254.169.254to a server in another country with address123.234.123.234; and route your request through that in order to circumvent the region lock.These are all fine and well, but if the provider was compromised and/or sold to malicious actor, they could resolve
your-bank.websiteto a phishing site, and then MITM all the traffic just like the region lock bypass example.So… in theory, it shouldn’t do anything more than resolving, but in practice, it may be hard to detect, and they could be doing more than just resolving.