Mullvad is pretty fucking awesome. Unlike fake shit *cough cough nordvpn cough cough* they actually give a shit, and don’t spend 90% of their money on marketing.
Or that time Clippy went on a disgruntle rampage…
Well, in fairness, it was the permissions on named.conf, so it was both!
No no I checked the perms
(Didn’t check the right perms)
How have I not seen this, as an old-timer? Thanks so much! I also clicked through to their shop, and my wallet’s definitely about to lose a little weight…
Oooh - shady bastiges. Thanks for the info - upvoted. I’d honestly never heard of a transparent proxy before and I used to ADMIN DNS (thankfully, for an honest and ethical ISP)! Your story convinced me to look into DOH again to see where it stands and I’m now trying out Switzerland-based Quad9 with some good results.
I also found that OpenVPN can be configured to avoid transparent proxies as of 2.3.9. If you ran OpenVPN on say, a Digital Ocean droplet or an AWS Lightsail instance and pointed it to a recursor you maintain (I like PDNS Recursor) - which could even live on the same droplet, potentially, you could bypass the proxy effectively without compromising vis-a-vis DOH. Admittedly, though, that’s a lot of shenanigans.
Yeah, bills go there, but administrative status notifications will go to somebody in the tech department. There’s multiple contacts in a WhoIs lookup for that reason.
Well, I set those sorts of things up to go to email groups that can be updated easily internally rather than a single individual.
I refuse to allow for a single point of failure. A single point of failure is a guaranteed point of failure.
Emails and phone calls.
I have two superpowers: MacGyverism and being annoying.
I will annoy people into doing their damn jobs.