Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
view the rest of the comments
Your domain is "hosted" (in this context, the DNS entries, not the actual content) on one or, ideally, more DNS servers that are known as the authoritative servers for your domain. You can look those up by searching the SOA (start of authority) and NS (nameserver) records for it.
Downstream servers may keep those and other records in cache for a while, usually guided by the TTL (time to live) entry. Once that expires, however, they need to refresh the data from the authoritative servers.
When those are unreachable, that cannot do so, and your domain is de facto unreachable for the internet at large, regardless of your own server actually being up.
You can still reach them by surfing to the actual IP instead, and/or hardcoding the DNS name in your local hosts file or your local DNS server/resolver. That is, of course, not visible to the internet at large.
You could host your own DNS servers to mitigate somewhat, but keep in mind that every level above your domain also needs to know which server is authoritative - my tuxera.be used to be self hosted, so the .be root servers had to know what the SOA for tuxera was.
Honestly, it's not something to worry about. I didn't keep up with changes in DNS security, so i switched to route53 (Amazon). I've been considering switching again to hetzner.de where i have some servers anyway.
DNS is pretty lightweight (relatively speaking), so it's probably the last thing to go down if a registrar is in trouble; you'd have plenty of warning signs beforehand.
(Yes, for pedantry, technically a registrar doesn't even have to offer DNS at all, they just handle ownership and administration at the top level domain, but most do anyway)
Thanks for the detailed explanation! I made a domain on Route 53 recently, but I'm trying to migrate it to NameCheap so I can do DDNS through my Unifi UDM SE as I think I'd need to set up a lambda function to get DDNS working through a script for Route 53. Would rather have it integrated into the router os if possible. Do you have a static IP or are you using DDNS?
I wish I could find it, but there was an interesting conference talk from AWS about route53 and how it was built with resilience in mind. If it goes down AWS has a problem. So they made sure that this is a very unlikely scenario.