Tootfinder

So I was pretty enthusiastic about #DNS4EU at first.
Then I've discovered it blocklisted some random pastebin. Well, it happens. I mean, pastebins frequently get into trouble because of people pasting random shit. So I've filed an unblock request. I've suddenly got a mail to confirm registration in some random company's system — I suspect it was related to DNS4EU, but no clear indication. I've ignored it.
Then they've blocklisted my mail provider, for no apparent reason. It's still blocked. I've switched to the "unfiltered" version to be able to access my mail again.
Today I've gotten a mail via my backup MX. My main MX is up. My educated guess is that sysadmins using DNS4EU now get my mail redirected to their "site blocked" server. Isn't that great?
PS. Maybe if more people filed unblock requests for "poczta.ftdl.pl", it would help. It's a non-profit e-mail provider.
#DNS #ItsAlwaysDNS

@… Hey, it is me again 😅
Just to let you know that I receive some 400 Bad Request errors from some DoH servers (dns.quad9.net and ns0.fdn.fr for instance) while some others accept my queries (dns.google and Cloudflare 1.1.1.1).
I am not sure yet if the error is on my use of the library or within the library itself.
Here is the code to run the query:

from my link log —
The disappearing Windows DNS debug log.
https://nxlog.co/disappearing-windows-dns-debug-log
saved 2019-01-10 https://

The disappearing Windows DNS debug log | NXLog Blog
Solution to the missing debug log file after Windows DNS Server rolls over its debug log.\n

3 days ago the RSS feed of planet.ubuntu.com stopped working due to a TLS cert error.
I THINK it's due to them overhauling & moving it to a github-hosted replacement, but as this was done just by redirecting DNS the new host doesn't have a TLS cert with the correct name. If so, this means that people following the old RSS feed can't do so any more and they got no notice that this was going to happen.
I don't know for sure though because my query remains unansw…

my workadventure.re google chrome app did not load today. If this happens to you as well, you need to flush/reset the Chrome DNS Cache or use another browser. ;) #TIL #DNS #Cache

from my link log —
trustydns: DNS Over HTTPS proxy, server and query programs.
https://github.com/markdingo/trustydns
saved 2019-06-28 https://do…

you can bring down 20% of the internet with a single-character typo in a regex, but you can also destroy a nearly 50 year old bridge with a single incorrectly placed piece of heatshrink
isn't technology beautiful
https://blog.cloudflare.com/details-of-t…

I find it really amuzing that IT-departments around the world is just plainly copying the example DNS-records in my blog-posts about DMARC.
Resulting in me getting reports about their domain to my inbox
#dmarc #email

from my link log —
Behind the complaints: investigating the suspicious pressure against archive.today.
https://adguard-dns.io/en/blog/archive-today-adguard-dns-block-demand.html
saved 2025-11-15

Behind the complaints: Our investigation into the suspicious pressure on Archive.today
Some time ago, we were contacted by a group fighting against online CSAM, demanding that AdGuard DNS blocks the Archive.today website. This was only the beginning of a much larger story…

from my link log —
Fuzzing DNS zone parsers.
https://www.cambus.net/fuzzing-dns-zone-parsers/
saved 2019-07-12 https://dotat.at…

I moved my DNS and mostly static sites from AWS to @…
It was a bit of a hassle, and I have to be a Linux admin again (AWS hosted via Route53 S3 magic)
https://webcam.calpenedes.com/

Montserrat Webcam & Weather
Live webcam and weather data from Montserrat. Current temperature: 8.8℃, humidity: 87%, and real-time weather conditions.

@… I am using dnsv2 to develop a "mock" DNS server for my unit tests.
I noticed that when specifying Server.Listener or Server.PacketConn, you also need to specify Server.Net or you end up with a "bad network" error when calling ListenAndServe.
Specifying the Net property seems redundant when the PacketConn/Listener properties are specifie…

The Pihole instance running on my laptop blocks about 21% of the DNS requests …. This is self-defense …
#Pihole #Enshittification

I had to migrate my #DNS today, and Hurricane Electric is such a pleasurable return to 90s.
Website obviously designed by a backend engineer. Has only tables and buttons. Buttons work and do things. It's fast. It support features fancy sites do not support. On top of it, free.
12/10

Currently most biggest email providers put mails from my domain in TLD .cloud and my server to spam. Even tho I have all the shiny things set up like SPF, DKIM, DMARC, reverse dns, the domain is not new, and there was never spam sent from my server. I am not on any blacklist of course.
And I don't get why ppl actually don't check what is in spam folder, like they really receive so much spam, so that they can't notice there is something? I have plenty of mail accounts in var…

added hn and lobsters to the dns deny list. Firefox "failed to load page" will be my reminder that even staring at the wall will be more useful than reading those 2 sites

@… This is your kinda pun.
https://wuffs.org/@Ninji/115815324741233244

#AWS goes down due to DNS.
#Azure: hold my beer

Oh my, @… is fast ! Faster than Cloudflare or Google. With average response time of 12 ms.
Where cloudflare was 22 ms
And Google shited with 232 ms 😆
#dns

from my link log —
Async DNS with Mac OS getaddrinfo_async_start and Rust smol.
https://fnordig.de/2025/11/07/async-dns-in-smol/
saved 2025-11-08 htt…

from my link log —
Discovering the discovery of designated resolvers (DNS DDR).
https://labs.ripe.net/author/yevheniya-nosyk/discovering-the-discovery-of-designated-resolvers/
saved 2025-11-09

Discovering the Discovery of Designated Resolvers
DNS encryption is gaining momentum with proposed standards such as DoT, DoH, and DoQ protecting DNS exchanges from external observers. But these standards introduce non-trivial changes to the original specification. Here we look at the Discovery of Designated Resolvers (DDR) - a mechanism that all…

from my link log —
Route 53 DNS: Amazon’s premier AWS database.
https://www.lastweekinaws.com/blog/route-53-amazons-premier-database/
saved 2021-02-18 <…

Route 53, Amazon’s Premier Database
I’ve periodically made reference in a bunch of places to Route 53 being my preferred database. But I’ve only really told the story in podcast and tweet

from my link log —
Can I use HTTPS RRs?
https://www.netmeister.org/blog/https-caniuse.html
saved 2025-12-12 https://dotat.at/…

Can I use HTTPS RRs?
A quick summary of which browsers support RFC9460 HTTPS DNS records and to what extent as of December 2025.

Does anyone actually use OpenNIC?
I selfhost my DNS with unbound, apparently it's simple to use OpenNIC's root server hints but then you remove ICANN ones.
I know OpenNIC's root servers also respond for ICANN domains, but what I was wondering is: can I use ICANN ones for ICANN domains and only use OpenNIC ones when ICANN root servers don't know about a TLD?
#OpenNIC