view the rest of the comments
Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
You need to host your domain somewhere, meaning some DNS provider needs to be the authority on what gets routed where when someone accesses your domain.
The provider will give you a list of nameservers when you make the domain part of their DNS.
I don't know if there are any that are free (if you don't also buy a domain from them), so you'll have to check on your own. You can also self-host a bind9 server and do your DNS there.
Please don't self-host DNS. It can be exploited and abused in many ways if you don't know what you're doing.
deSEC.io is free and fully featured.
bunny.net is technically $1/mo but you don't pay anything in months where the queries against their servers fall under a threshold. With a low use personal domain you can basically load up $10 worth of credit and coast on it for a year or more.
Seconded
One of these is DNS reflection, a type of amplification DDoS I found out about several years ago... You send a tiny packet to a DNS server requesting a domain with long records, but tell the DNS server to send the response to another address. Pretty interesting and amusing imo, but probably not if you're on the receiving end of one lol
Isn't that mainly a problem with recursive DNS servers? The authoritative servers are only aware of the few domains they're hosting.
"If you do everything perfectly you won't have security problems."
But people make mistakes. Human error and misconfigured servers is the cause of many security flaws. Especially people asking "what should I provide for DNS on this domain registration form?"
DNS services are dirt cheap. Hosting yourself requires some knowledge to run security, and you need a static IP address to host one which many people don't have.
Best not to do it yourself.
Do either of the options you mentioned provide custom nameservers? As in, the ability for ns01.yourdomain.com to resolve to your account on their DNS servers?
Do you mean NS records? Yes, they both let you add and edit them.
Cloudflare is free, and with a bunch of other services available