• 23 Posts
  • 1.6K Comments
Joined 1 year ago
cake
Cake day: December 17th, 2023

help-circle






  • neidu2@feddit.nlMtoCasual Conversation @lemm.eeHow is your week going ?
    link
    fedilink
    English
    arrow-up
    7
    ·
    edit-2
    3 months ago

    I’m soaking wet. My kids wanted to go trick or treating, but there’s a storm at the moment with sideways rain. So I followed them in my car until I decided it was enough. Two of them had already capitulated, but the 3rd and a friend wanted to keep going.

    Helping them in/out as well as helping their friend getting the bike out was enough weather exposure for me to get properly soaked - all of my kids were completely drenched, but they had a good time.

    They’re currently eating Halloween candy, and I’m looking forward to a hot shower with a cold beer once they’re in bed in not too long.

    Oh, and I got a new laptop today, which is pretty nice. Haven’t had much time setting everything up yet, though.













  • neidu2@feddit.nlMtoCasual Conversation @lemm.eeHow is your week going ?
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    4 months ago

    Hobbies: 10/10. Factorio Dpace Age is out, and I’ve started tinkering with music making again.

    Work: 9/10. I’ll spare you the boring details, but I was able to deliver some great news yesterday, and my design doc draft is now what we’ll be doing for the next two years. The next step is to get budget approval for 5 additional hires.

    Family: 8/10. Youngest one has the sniffles, but she’s in good spirit and watching Gabbys Dollhouse.

    Finances: 9/10. Payday today, and all of the bills that are normally due today were paid ahead of time.

    All in all, pretty good.




  • Some surface-level info while I’m waiting for my kids to finish the evening ritual: No need for an extra IP or VPS. You can host them all on the same IP and machine, provided there aren’t any conflicting port assignments.

    In the DNS server, you can enter the various subdomains as CNAME pointing to the A record. The server-software is configured with which hostname it should operate as (For example, HTTP/1.1 has a Host-specification in the initial request, so that one server can host multiple domains on the same IP)

    It should be noted that mail servers are indicated by an MX-record. And mailservers should also have a TXT record (SPF record) as part of spam prevention - some SMTP servers query this to ensure that your e-mail actually comes from you and not from someone spoofing the domain.

    I used to have a zone file that did roughly what you’re trying to do, bit sadly I don’t have it anymore. But as you have DNS up and running, I’m sure you’ll be able to figure out the rest through checking some examples.

    I half-baked an example zone file for you. I haven’t tested it, though. It assumes the domain of blargh.com being hosted from an IP of 123.123.123.123:

    $TTL 86400
    @    IN    SOA   ns1.blargh.com. admin.blargh.com. (
                    2024102102 ; Serial (incremented)
                    3600       ; Refresh
                    1800       ; Retry
                    1209600    ; Expire
                    86400      ; Minimum TTL
    )
    
    ; Name servers
    @    IN    NS    ns1.blargh.com.
    @    IN    NS    ns2.blargh.com.
    
    ; A Records
    @            IN    A      123.123.123.123
    ns1          IN    A      123.123.123.123
    ns2          IN    A      123.123.123.123
    
    ; CNAME Records
    mail         IN    CNAME  blargh.com.
    mastodon     IN    CNAME  blargh.com.
    matrix       IN    CNAME  blargh.com.
    
    ; MX Records
    @            IN    MX     10 mail.blargh.com.
    
    ; TXT/SPF Record
    @            IN    TXT    "v=spf1 mx ~all"
    

    Oh, and some tips:

    • Do not enable SMTP-relay on your SMTP server. This opens you up to abuse, and you (probably) don’t need it.
    • Your DNS server should only talk to strangers about queries about your domain. Otherwise you might be part of a DNS amplification attack.
    • I have a personal preference for imap.blargh.com or pop3.blargh.com, combined with smtp.blargh.com, as it makes it easier to deduct the protocol, if you’re not supporting imap and pop3. I don’t think anyone else but me care, though.