So…
Microsoft seems to be moving on from PowerShell, Windows Admin Center, Copilot, whatever new name it has for Azure AD, and now it’s trying to push this DNS masking crap that hides shit behind the trafficmanager.net domain.
And in typical Microsoft fashion, it started forcing its adoption regardless of what users want, but it included itself this time, and it seems to have move most if not all of its domains behind the trafficmanager.net domain.
Here’s the thing though: trafficmanager.net is blacklisted!
I didn’t do that, not only that, compared to most of the time, recently it has been the lightest on blocks I’ve had my DNS servers configured with. I’m using only one list, one of the-, if not the most popular out there, StevenBlack’s domains list, hosted by Microsoft’s very own GitHub. So if I’m getting the block, a lot of people if getting it too. Microsoft just Windows Updated itself (fucked itself up) by moving its domains.
I don’t know why was it blacklisted, trafficmanager.net. It may be because what this domain is doing is illegal (DNS-illegal) as it’s using chained CNAME (or alias) records which is a no-no. Cloudflare even has a name to fix that for you (regardless if you asked for it) with a technique it calls CNAME flattening. As I understand, it basically skips all the CNAMEs and just returns the IP address. I’m not sure of the specifics either because I just chose to play by the rules and not be subject to Microsoft or Cloudflares experiments.
Of course it could’ve been blacklisted because the clearly deceptive intent this service it’s pushing has, and last but not least it’s the traditional geisha-in-kimono prostitution-oldest-profession reason that we’re talking about Microsoft, a well known bad actor, so it’s unsurprising it was blocked so fast. good. I’ll masturbate over this, I promise. It’s just the right thing to do.
Speaking of Windows Update though, there’s a chance Windows Update might not be working, I’m not going to give my servers access to the Internet just to check partly because I’d still would have to remember so many policies that block them from Windows Update even though if they’re online, but mostly because it’s a system risk. Not the Internet (although that too), I mean Windows Update.
I’m was thinking about taking my federated domains off Azure, since I don’t use it anyway, but I held off because of what if… but this is a big big green light to severe that link off. Well… thanks to Microsoft itself: ☑︎
If you’re fed up with this company’s bullshit like I definitely am, this is so so good, I’m sure it’s got to be fattening.
I guess that’s it for me, teriyaki kakaroto, padawans. You’ve been enlightened for today. I wish you the most of dicks on this joyous occasion,
Your sensei. <3
Leave a Reply