Do browsers know domains that are supposed to be encrypted?

Do browsers have a list with sites that are supposed to be encrypted?

Could a man in the middle attack be performed by presenting a user a http site instead of an https site? That way the server would not need to provide a certificate.

It wouldn’t show up as a secure site in the browser but I think most people wouldn’t notice it. And it wouldn’t warn the user, because there are legitemate sites who don’t use https.

Would such an attack be possible or does the browser notice that the site is supposed to use https but doesn’t?

Tracking domains in installed applications

Many websites have tracking domains in their webpages, which I block using "Privacy Badger" Extension by EFF.

These domains are easily visible by pressing Ctrl+U in Firefox to see the "Page Source".

Also I have observed that many apps(which I download from the Google Play Store) show the content which is exactly similar to the content accessed by any web browser on the related web pages. I guess that those apps are nothing more than a web browser in themselves, accessing the related web pages[I MIGHT BE WRONG].

In the above case(or even in the case where content accessed by apps is aesthetically and/or functionally different than that accessed by a browser) I guess that the tracking domains(which are on the related web pages) are also baked into the apps.

My questions:

  1. Are the tracking domains present in the apps also?
  2. Any way to verify their presence[as was the case with Firefox above]?
  3. How to block them from tracking the user[as Privacy Badger does]?

Note: I am just talking about "simple" tracking methods(domains), not "advanced" ones like fingerprinting, Tracking Pixels etc.

Does the Tempest domain’s Destructive Wrath maximize ongoing damage from a twinned Witch Bolt?

I have a multiclass tempest cleric/sorcerer.

If I twin Witch Bolt and then use Channel Divinity: Destructive Wrath, which allows me to deal max thunder or lightning damage, are both bolts impacted? I assume I can concentrate on both because it is one spell casting but is the lingering effect of witch bolt also maximized?

Point Subdomain in Google Domains to Google Compute Instance running WordPress

I have installed wordpress (the bitnami multi-site version) to a compute instance from the marketplace. I’ve also recently moved my domain registration to domains.google.com. Everything is working fine with the top-level domain. I also set up a subdomain, wp.mydomain.com in the domains interface pointed to the static external IP I configured for the compute instance running wordpress. When I go to wp.mydomain.com it redirects me to http://.xip.io/.

How do I get this set up so that I stay on wp.mydomain.com instead of going to my ip address as the url?

Sitemap for one website in multiple domains

I have 2 domains (A and B). The first one (A) is the website.

In sitemap.xml of “A” domain, I have a sub-sitemap in “B” domain with “A” URLs.

I have follow the documentation (https://support.google.com/webmasters/answer/75712?hl=en). So these 2 domains are verified in the Google Search Console but Google does not index the sub-sitemap (in “B” domain with “A” URLs). Other sub-sitemap in “A” domain are OK.

FYI: the sitemap is valid because if I send it manually in the Search Console (on the B domain property), URLs is displayed in Google search results. An for multiple reasons, I can’t sent it manually every time.

Do you have an idea ? Thanks

Test Your Domain’s DNS Zone Health

Setting up DNS is easy, isn't it? Many times you do not even do it, because your hosting does it for you. You then just check your site is accessible and that's it. But DNS is quite a complex system and there are issues you might not even know they existed. The fact that it works for you perfectly does not necessarily means that it works for everyone.

You can now check your DNS Zone with our new tool called DNS Zone Health Checker….

Test Your Domain's DNS Zone Health