etc/hosts: attempt to perform the bad idea of well-known DNS servers here instead

etc/hosts/README.md

@@ -0,0 +1,36 @@
+# `/etc/hosts`
+
+This file is DNS before DNS and legacy remain which is still used.
+
+<!-- editorconfig-checker-disable -->
+<!-- prettier-ignore-start -->
+
+<!-- START doctoc generated TOC please keep comment here to allow auto update -->
+<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
+
+- [dns](#dns)
+- [`hosts.fedora`](#hostsfedora)
+- [`hosts.debian`](#hostsdebian)
+
+<!-- END doctoc generated TOC please keep comment here to allow auto update -->
+
+<!-- prettier-ignore-end -->
+<!-- editorconfig-checker-enable -->
+
+## dns
+
+This began from question why should I have DNS to have DNS, but having it
+on DNS resolver level broke DNSSEC due to my weird mixing of systemd-resolved
+and Unbound, so now it's something I can attempt to `/etc/hosts`.
+
+**_EXCERCISE CAUTION!_**
+
+## `hosts.fedora`
+
+I am pretty sure this is the `/etc/hosts` that was given me by Fedora < 40
+with changes removed.
+
+## `hosts.debian`
+
+I think this is the Debian format which used to be just `../hosts` in this
+repository.

etc/hosts/dns

@@ -0,0 +1,82 @@
+# Well known DNS servers to be appended to /etc/hosts
+
+# Quad 9 Secure
+9.9.9.9 dns.quad9.net
+149.112.112.112 dns.quad9.net
+2620:fe::fe dns.quad9.net
+2620:fe::9 dns.quad9.net
+
+# Quad9 No Threat Blocking
+9.9.9.10 dns10.quad9.net
+149.112.112.10 dns10.quad9.net
+2620:fe::10 dns10.quad9.net
+2620:fe::fe:10 dns10.quad9.net
+
+# Quad9 Secure + ECS
+9.9.9.11 dns11.quad9.net
+149.112.112.11 dns11.quad9.net
+2620:fe::11 dns11.quad9.net
+2620:fe::fe:11 dns11.quad9.net
+
+# Quad9 No Threat Blocking + ECS
+9.9.9.12 dns12.quad9.net
+149.112.112.12 dns12.quad9.net
+2620:fe::12 dns12.quad9.net
+2620:fe::fe:12 dns12.quad9.net
+
+# DNS0 default
+193.110.81.0 dns0.eu
+185.253.5.0 dns0.eu
+2a0f:fc80:: dns0.eu
+2a0f:fc81:: dns0.eu
+
+# DNS0 Zero
+193.110.81.9 zero.dns0.eu
+185.253.5.9 zero.dns0.eu
+2a0f:fc80::9 zero.dns0.eu
+2a0f:fc81::9 zero.dns0.eu
+
+# DNS0 Kids
+193.110.81.1 kids.dns0.eu
+185.253.5.1 kids.dns0.eu
+2a0f:fc80::1 kids.dns0.eu
+2a0f:fc81::1 kids.dns0.eu
+
+# DNS0 Open
+193.110.81.254 open.dns0.eu
+185.253.5.254 open.dns0.eu
+2a0f:fc80::ffff open.dns0.eu
+2a0f:fc81::ffff open.dns0.eu
+
+# Cloudflare
+1.1.1.1 cloudflare-dns.com one.one.one.one
+1.0.0.1 cloudflare-dns.com one.one.one.one
+2606:4700:4700::1111 cloudflare-dns.com one.one.one.one
+2606:4700:4700::1001 cloudflare-dns.com one.one.one.one
+
+1.1.1.2 security.cloudflare-dns.com
+1.0.0.2 security.cloudflare-dns.com
+2606:4700:4700::1112 security.cloudflare-dns.com
+2606:4700:4700::1002 security.cloudflare-dns.com
+
+# Mullvad ad, tracker & malware block
+194.242.2.4 base.dns.mullvad.net
+2a07:e340::4 base.dns.mullvad.net
+
+# AdGuard Default
+94.140.14.14 dns.adguard-dns.com
+94.140.15.15 dns.adguard-dns.com
+2a10:50c0::ad1:ff dns.adguard-dns.com
+2a10:50c0::ad2:ff dns.adguard-dns.com
+
+# Google DNS
+8.8.8.8 dns.google dns.google.com
+8.8.4.4 dns.google dns.google.com
+2001:4860:4860::8888 dns.google dns.google.com
+2001:4860:4860::8844 dns.google dns.google.com
+
+# Google DNS64
+2001:4860:4860::6464 dns64.dns.google
+2001:4860:4860::64 dns64.dns.google
+
+# vim: filetype=unbound.conf

etc/hosts/hosts.fedora

@@ -0,0 +1,7 @@
+# Loopback entries; do not change.
+# For historical reasons, localhost precedes localhost.localdomain:
+127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4
+::1         localhost localhost.localdomain localhost6 localhost6.localdomain6
+# See hosts(5) for proper format and other examples:
+# 192.168.1.10 foo.example.org foo
+# 192.168.1.13 bar.example.org bar