Is anyone here offering private, personal DNS servers that I can pay with lightning? A solution like AlbyHub would be great.
Discussion
In what way? Authoritative name servers or resolvers for client access? Also what protocols?
So that I can replace my ISP's DNS with something more private
So a resolver. What's your budget? I can set you up with a DNSCrypt, DoH and DoT DNS server for 10000 sats/month, how does that sound
To clarify the terms that's encrypted DNS. DNS over HTTPS and DNS over TLS. 3 secure protocols (DNSCrypt is the best bur least supported)
Very interesting. Would this be a one off for you or do you have other clients in similar setups?
Pricewise sounds a little expensive. But maybe it's the price for a one off client like me. It would be great if we could do half of that.
One off setup. I run a similar setup for myself. I'll think about it. The problem with the low price is that I need it to make sense for my time + the server cost (through nostr:nprofile1qqszdzu53dd2kjatpe2rpmjfu08lz9mkeuvrm7fmxg2el9nsa42pf9gpzamhxue69uhhyetvv9ujumn0wd68ytnzv9hxgtcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsz9mhwden5te0wfjkccte9ec8y6tdv9kzumn9wshsma93a8)
Maybe 7500?
Otherwise you could set it up yourself, I'll share the docker compose config later tonught and you don't have to pay me or anyone else, except the server provider
It def makes sense for a one off thing. Though I was hoping I could help use or start a new provider for many folks here and get some sustainable number of clients to make it worth your time.
If I can get other people to sign up I would be willing to drop it to 2k sats, or less and even build a ui to purchase access to it
Nice! That could definitely get a lot of people interested. How would the resolver know if the user is a paying user, though?
Either a unique token per user. This is included in the sdns string for DNSCrypt
Or a user generated cert. Either choice works. And would be used for auth only and then dropped.
In fact now that I think about it more, the token could be a cashu token, so the payment and auth are the same process.
I didn't have anything setup (I probably should because att is terrible), but here a tutorial on seeing up a DNS server in docker. You could spin up a $2 VPS, and it as you DNS server.
https://dev.to/victoramit/how-to-set-up-a-local-dns-server-with-docker-280n
That's base DNS without encryption. It's worse than some ISPs.
No need to pay for that really.
One search away I found https://tiarap.org/
I don't like not paying for services. I don't want to be the product anymore.
This is very different. DNS is cheap so they can serve a lot of people. These kinda projects are just passionate and enjoy offering it. Your only a product in the sense that you may count as a statistic but thats it. The real value for the operator and yourself is that the DNS queries upstream from their server cant be traced back to one individual.
If you are going paid "private" DNS you have a full trail back to you. Thats not gonna be very private.
The last part is incorrect.
DNSCypt supports anonymized queries which work like a 1 layer onion router. You can have many upstream DNSCypt servers and they can have you as upstream, and there's no linkage between the two
Just use https://nextdns.io/
nostr:nprofile1qqsplqcdmp63xzcnf7ln7faxnmkdscf6fxt53fcmtgn35uvlawhpfmgpz9mhxue69uhkummnw3ezuamfdejj7qgwwaehxw309ahx7uewd3hkctcpzamhxue69uhhyetvv9ujuurjd9kkzmpwdejhgtc672884?
Nope; run a personal resolver at home is more appropriate. Ty tho
y not just run a pihole? even my non linux frens run that.. then maybe augment it somehow with your own records. (i dont run one rn but i should..)
I run my own recursive resolver and PiHole.
Too cheap to really bother paying for privacy guarantees. Mullvad DNS can be ran over TLS or HTTPS encryption and they operate it as a free service basically to advertise their VPN. I'd like to see if there's a more trustworthy provider than mullvad paid or not. I'd argue too that linking a payment transaction is a potential deanonymizing factor as well.
If you wanted ideal privacy, better than any paid DNS you could run your own at home or on a VPS.
I run mail-in-a-box, which includes a DNS server. Highly recommend! I run it on a VPS at nostr:nprofile1qqszvsw9qc8yamyzpz0akty7hpr3ges0mhmuywsp6ucnz9ypnqlszagpr9mhxue69uhhyetvv9ujumt0d4hhxarj9ecxjmnt9uq3zamnwvaz7tmwdaehgu3wd3skuep0qythwumn8ghj77rdwgh82um9dehhxarj9ehhyee0fmcfpl , paid for using lightning. I think this vaguely fits your description.
I run pihole with unbound in my local network and on the go with Wireguard. This is the easiest way for self-hosting.
When you want to try it from someone else, you can use https://adminforge.de/ he has is own DNS Server https://dnsforge.de/ and many other services.
Its all for free but you can tip him with onchain Bitcoin and Fiat.
Hi nostr:nprofile1qqsyvrp9u6p0mfur9dfdru3d853tx9mdjuhkphxuxgfwmryja7zsvhqpzamhxue69uhhv6t5daezumn0wd68yvfwvdhk6tcpz9mhxue69uhkummnw3ezuamfdejj7qgswaehxw309ahx7um5wghx6mmd9u2mk7fe
If you need just DNS Servers, we can offer that service. We do that already for some customers.