Comment on Does anyone has a .eu.org subdomain?
lemann@lemmy.dbzer0.com 9 months agoPlease don’t self-host DNS. It can be exploited and abused in many ways if you don’t know what you’re doing.
Seconded
One of these is DNS reflection, a type of amplification DDoS I found out about several years ago… You send a tiny packet to a DNS server requesting a domain with long records, but tell the DNS server to send the response to another address. Pretty interesting and amusing imo, but probably not if you’re on the receiving end of one lol
deafboy@lemmy.world 9 months ago
Isn’t that mainly a problem with recursive DNS servers? The authoritative servers are only aware of the few domains they’re hosting.
atzanteol@sh.itjust.works 9 months ago
“If you do everything perfectly you won’t have security problems.”
But people make mistakes. Human error and misconfigured servers is the cause of many security flaws. Especially people asking “what should I provide for DNS on this domain registration form?”
DNS services are dirt cheap. Require some knowledge to run security, and you need a static IP address to host one.
Best not to do it yourself.