I mean, it could be… I’ll try it with a 128 char base 52 name and see what happens

Yes, exactly. Super weird, shouldn’t happen. I wonder if I have a compromised box somewhere…

Previous experiments, yes, I sent a request. The random one, no.

Will do!

Shows up by name in the apache other_hosts…log, so yes

Nope, but that’s a good suggestion. I set this one up brand new for the experiment.

Mostly from AWS or the like, with occasional Chinese and Russian origins.

The scans look like requests to various WordPress endpoints, JavaScript files associated with known vulnerabilities etc

Nope

I don’t have any subdomains registered with DNS.

I attempted dig axfr example.com @ns1.example.com returned zone transfer DENIED

Interesting! I’m going to look into this. Not sure my provider has this in their UI

Actually, wait. Something you a said might actually be just what I’m looking for: you mean that I can have DNS entry for mydomain.com and no additional CNAMEs, and have a cert for nextcloud.mydomain.com (or wildcard maybe?) and somehow still be able to use name based virtual servers?

Hmmm. I thought I was going to be limited to path-based.

Explain more?

Okay. Yup, that’s probably true. I’m not that deep into network stuff. But, if you’re just doing the basic, ‘ha.mydomain.com => 121.41.38.9’ that works out of the box with name based virtual hosts and reverse proxy, then yeah, you’ll get traffic on that within 24 hours.

I reckon if a person understands what you’re talking about though, they’re already doing better than most.

It trivial to get a list of all registered domains and subdomains and the IP addresses they map to. There are any number of paid services to make it easy (e.g. https://subdomainfinder.c99.nl/) but I’m pretty sure there’s also a way to do it yourself.

Very cool, great work!

Worth noting about this approach is that the global list of subdomains is publicly searchable. So, you’ll see vulnerability and AI scans on those endpoints.

If that’s a concern for you, using path-based routing (e.g. Apache VirtualHost) allows you to use difficult to guess paths to your cloud.

Oh wouldn’t that be sweet, a federated web crawler

From where I’m sitting, a 55yo who came out eight years ago, the biggest thing I deal with is grief.

I tried to come out at 23 – young for the 90’s! – but chickened out in part because of some gatekeeping and also fear. So. Much. Fear. Even then though, my voice had dropped, my beard come in, and and and…

But I was young and hot and around beautiful slackers who would have loved me regardless, and now I carry the grief of 33 years of coulda-been.

That’s the price of transitioning in middle age, for me at least.

You might think that an old like me might be resentful of the opportunities available for trans youth today. Absolutely not! Seeing young adults who never had to go through the “wrong” puberty, that gives me so much hope and joy!

I grieve now for the kids who are seeing that hope deferred.

I guess what I’m getting at is that any age you transition at, there may be lost time to grieve, but more than that, it’s something to be treasured beyond value.

I celebrate each and every one of you 💕

At the rate they’re purchasing debt, it’s arguably not

This is beautiful. For those calling it a half measure, calling for the end to private insurance etc etc, this is the government paying for medical care.

By paying only pennies on the dollar it’s demonstrating that medical debt is a farce. That puts a huge dent in the myth that public healthcare is impractical here

Brilliant science man -> “yeah! My dude is once in a generation saving science from all the incompetents”

Brilliant science woman -> … whatever parent comment 👆🏼 is.

First law of science on the internet: great women are always “just one part of a team.”

Runbox (Norway) is a good option, good privacy protection and outside of EU chat control zone