easyDNS
@easydns.com
The legendary and uber-clueful domain provider, since 1998.
Integrate your BlueSky Handle with your own domain name using our wizard. https://easydns.com/bsky
Integrate your BlueSky Handle with your own domain name using our wizard. https://easydns.com/bsky
default behaviour in a registrar transfer should be to leave the nameserver delegation unchanged
you're supposed to put an implicit confirmation in there if you want to switch nameservers at the same time
you're supposed to put an implicit confirmation in there if you want to switch nameservers at the same time
November 28, 2025 at 8:01 PM
default behaviour in a registrar transfer should be to leave the nameserver delegation unchanged
you're supposed to put an implicit confirmation in there if you want to switch nameservers at the same time
you're supposed to put an implicit confirmation in there if you want to switch nameservers at the same time
In the case of multi-homed websites (many hostnames, 1 IP) the SNI has to be sent in the clear to begin the TLS handshake.
So yes, an eavesdropper knows which hostnames you are connecting to.
So yes, an eavesdropper knows which hostnames you are connecting to.
November 13, 2025 at 9:36 PM
In the case of multi-homed websites (many hostnames, 1 IP) the SNI has to be sent in the clear to begin the TLS handshake.
So yes, an eavesdropper knows which hostnames you are connecting to.
So yes, an eavesdropper knows which hostnames you are connecting to.
in the case of sitting on an open WiFi network with an eavesdropper in the mix: yes.
November 13, 2025 at 9:33 PM
in the case of sitting on an open WiFi network with an eavesdropper in the mix: yes.
of course, you still have to trust the VPN provider as well
you're really just transferring your trust. I'm not vouching for VPN providers in general
you're really just transferring your trust. I'm not vouching for VPN providers in general
November 13, 2025 at 3:04 PM
of course, you still have to trust the VPN provider as well
you're really just transferring your trust. I'm not vouching for VPN providers in general
you're really just transferring your trust. I'm not vouching for VPN providers in general
you could be with a DNS provider you trust (to be clear, we're talking resolvers here) - and you could be using DoH/DoT, and maybe none of your apps are leaking your DNS queries.
but without a VPN, on a public wifi, an eavesdropper can still see what endpoints you're connecting to
but without a VPN, on a public wifi, an eavesdropper can still see what endpoints you're connecting to
November 13, 2025 at 3:04 PM
you could be with a DNS provider you trust (to be clear, we're talking resolvers here) - and you could be using DoH/DoT, and maybe none of your apps are leaking your DNS queries.
but without a VPN, on a public wifi, an eavesdropper can still see what endpoints you're connecting to
but without a VPN, on a public wifi, an eavesdropper can still see what endpoints you're connecting to
you could be using DoT / DoH and still have your web browsing tracked (tracked, not read)
that and a lot of apps leak DNS queries despite DoH/DoT
that and a lot of apps leak DNS queries despite DoH/DoT
November 12, 2025 at 6:20 PM
you could be using DoT / DoH and still have your web browsing tracked (tracked, not read)
that and a lot of apps leak DNS queries despite DoH/DoT
that and a lot of apps leak DNS queries despite DoH/DoT
...eavesdroppers may not be able to see the contents of individual connections on an open WiFi network, but they can certainly see what sites you're visiting and what DNS lookups you're doing.
November 12, 2025 at 1:26 PM
...eavesdroppers may not be able to see the contents of individual connections on an open WiFi network, but they can certainly see what sites you're visiting and what DNS lookups you're doing.
They need to have them executed here - usually via the Ontario Sheriff's Office, or otherwise accompanied with appropriate Letters Rogatory
November 10, 2025 at 7:17 PM
They need to have them executed here - usually via the Ontario Sheriff's Office, or otherwise accompanied with appropriate Letters Rogatory
This subpoena is for archive TODAY. that is not archive ORG - two completely different outfits.
We are the registrar for .ORG - who is NOT the subject of that subpoena
We are the registrar for .ORG - who is NOT the subject of that subpoena
November 10, 2025 at 6:13 PM
This subpoena is for archive TODAY. that is not archive ORG - two completely different outfits.
We are the registrar for .ORG - who is NOT the subject of that subpoena
We are the registrar for .ORG - who is NOT the subject of that subpoena
To be clear: archive *.org* (a.k.a waybackmachine) is a completely different organization than archive *.is* *.ph* et al
Internet Archive: Digital Library of Free & Borrowable Texts, Movies, Music & Wayback Machine
archive.org
November 10, 2025 at 6:04 PM
To be clear: archive *.org* (a.k.a waybackmachine) is a completely different organization than archive *.is* *.ph* et al
DNS isn't zero-trust.
One of the reasons blockchain *seems* compelling for P2PDNS is because it is permissionless.
But there are other trade-offs in using a blockchain as a naming root. Immutability can actually work against you sometimes.
I've been thinking about this for a long, long time.
One of the reasons blockchain *seems* compelling for P2PDNS is because it is permissionless.
But there are other trade-offs in using a blockchain as a naming root. Immutability can actually work against you sometimes.
I've been thinking about this for a long, long time.
November 6, 2025 at 2:04 PM
DNS isn't zero-trust.
One of the reasons blockchain *seems* compelling for P2PDNS is because it is permissionless.
But there are other trade-offs in using a blockchain as a naming root. Immutability can actually work against you sometimes.
I've been thinking about this for a long, long time.
One of the reasons blockchain *seems* compelling for P2PDNS is because it is permissionless.
But there are other trade-offs in using a blockchain as a naming root. Immutability can actually work against you sometimes.
I've been thinking about this for a long, long time.
If you DM one of your domains I can get it looked at and make sure you're on the right service level
November 6, 2025 at 1:57 PM
If you DM one of your domains I can get it looked at and make sure you're on the right service level
Sorry - late to the thread here.
On the DNS queries - in over 95% of the cases domains are well under the limits and if you unexpectedly go over, it is usually transient and there are ways to mitigate it.
Cont..
On the DNS queries - in over 95% of the cases domains are well under the limits and if you unexpectedly go over, it is usually transient and there are ways to mitigate it.
Cont..
November 6, 2025 at 1:55 PM
Sorry - late to the thread here.
On the DNS queries - in over 95% of the cases domains are well under the limits and if you unexpectedly go over, it is usually transient and there are ways to mitigate it.
Cont..
On the DNS queries - in over 95% of the cases domains are well under the limits and if you unexpectedly go over, it is usually transient and there are ways to mitigate it.
Cont..
failover FTW. It's basically "reverse dynamic DNS". we run a bunch of monitors that take heartbeats of your main IP and do a DNS update locally if there's a problem.
August 8, 2025 at 7:10 PM
failover FTW. It's basically "reverse dynamic DNS". we run a bunch of monitors that take heartbeats of your main IP and do a DNS update locally if there's a problem.
The more I think about it the less I think your idea will work anyway - you need to just send the IP that is functioning - if its down, failover to the next IP - but never send the second one unless the first is down.
August 8, 2025 at 7:02 PM
The more I think about it the less I think your idea will work anyway - you need to just send the IP that is functioning - if its down, failover to the next IP - but never send the second one unless the first is down.
Why don't you just use hostname failover?
August 8, 2025 at 7:00 PM
Why don't you just use hostname failover?
by "yes it is" I meant: weird. Looking into whether it's possible.
(maybe if you explain what you're trying to do it would be helpful)
(maybe if you explain what you're trying to do it would be helpful)
August 8, 2025 at 6:55 PM
by "yes it is" I meant: weird. Looking into whether it's possible.
(maybe if you explain what you're trying to do it would be helpful)
(maybe if you explain what you're trying to do it would be helpful)