Blog

Field notes from the network

DNS quirks, email-auth pitfalls, security-header deep dives, post-mortems and how-tos — written by the people running the probes.

Operations 2026-05-12 · 5 min

How to monitor SSL certificate expiry without surprises

Five practical ways to never wake up to an expired cert again — including the host.tools cert-watch API.

Read article →

Email 2026-05-08 · 8 min

From p=none to p=reject — a 30-day DMARC roadmap

Step-by-step rollout that won't blackhole your transactional mail. Real-world DMARC reports, parsed.

DNS 2026-05-04 · 6 min

The "DNS propagation" myth — it's actually caching

Why "propagation" isn't a thing, what TTL really controls, and how to ship a low-risk record change.

Security 2026-04-29 · 7 min

How a single cookie leak fingerprinted half the internet

A post-mortem of a real CDN-side cookie issue — and the audit you can run today to make sure you're safe.

Sponsored host.tools Pro

Bulk lookups · monitors · webhooks · 10,000 API calls/day

Upgrade to Pro for $19/mo. Cancel anytime. Works with the same API you already use.

IP 2026-04-25 · 10 min

ASNs, peering and you — a webmaster's primer

Why your IP belongs to an autonomous system, how peering shapes latency, and what a hosting provider's ASN says about reputation.

HTTP 2026-04-20 · 9 min

Going from F to A+ on security headers in one afternoon

CSP, HSTS, COOP, COEP, Permissions-Policy. Copy-paste-ready configs for nginx, Apache, Cloudflare Workers and Vercel.

Get one good post a week

No spam, unsubscribe in one click. Curated DNS, security-header and email-auth deep dives.