Podcasts about Quad9

  • 36PODCASTS
  • 44EPISODES
  • 56mAVG DURATION
  • ?INFREQUENT EPISODES
  • Feb 13, 2025LATEST
Quad9

POPULARITY

20172018201920202021202220232024


Best podcasts about Quad9

Latest podcast episodes about Quad9

Royal Palace Podcast
14. Illegal Streaming

Royal Palace Podcast

Play Episode Listen Later Feb 13, 2025 58:59


Upset over illicit sports streaming websites, Canal+ petitioned a French court to order Google, Cloudflare, Quad9 and Vercara to no longer resolve queries to domains like antenasports.ru. We discuss whether the court's decision to side with Canal+ amounts to "internet censorship" and whether it will have any effect. Check out our accompanying article at royalpalacemedia.comA few precisions/corrections:- Canal+ Groupe has been recently restructured such what we said about Vavendi is not longer up-to-date (the firm remains nonetheless under the control of the Bolloré family).- The acronym for the Inter-planetary File System is "IPFS" but Patrick mistakenly says IFS because interplanetary is arguably one word.- Our website does not have a certificate issued by Cloudflare, but rather Google Trust Services which is one of the five certificate authorities Cloudflare uses to issues SSL certs.

Hacker News Recap
December 6th, 2023 | Gemini AI

Hacker News Recap

Play Episode Listen Later Dec 7, 2023 17:26


This is a recap of the top 10 posts on Hacker News on December 6th, 2023.This podcast was generated by wondercraft.ai(00:37): Gemini AIOriginal post: https://news.ycombinator.com/item?id=38544729&utm_source=wondercraft_ai(02:15): Gemini: Google's most capable AI model yetOriginal post: https://news.ycombinator.com/item?id=38544746&utm_source=wondercraft_ai(03:39): Apple confirms governments using push notifications to surveil usersOriginal post: https://news.ycombinator.com/item?id=38543587&utm_source=wondercraft_ai(05:12): Mold CourseOriginal post: https://news.ycombinator.com/item?id=38543229&utm_source=wondercraft_ai(07:07): Rethinking serverless with FLAMEOriginal post: https://news.ycombinator.com/item?id=38542764&utm_source=wondercraft_ai(08:47): Playstation keeps reminding us why digital ownership sucksOriginal post: https://news.ycombinator.com/item?id=38543196&utm_source=wondercraft_ai(10:21): An Open Letter to the Python Software FoundationOriginal post: https://news.ycombinator.com/item?id=38542330&utm_source=wondercraft_ai(12:08): Quad9 wins appeal against SonyOriginal post: https://news.ycombinator.com/item?id=38548209&utm_source=wondercraft_ai(13:36): WikifunctionsOriginal post: https://news.ycombinator.com/item?id=38548130&utm_source=wondercraft_ai(15:27): Just about every Windows/Linux device vulnerable to new LogoFAIL firmware attackOriginal post: https://news.ycombinator.com/item?id=38545022&utm_source=wondercraft_aiThis is a third-party project, independent from HN and YC. Text and audio generated using AI, by wondercraft.ai. Create your own studio quality podcast with text as the only input in seconds at app.wondercraft.ai. Issues or feedback? We'd love to hear from you: team@wondercraft.ai

Bitcoin, Blockchain, and the Technologies of Our Future
pfSense Deep Dive: Unbound Explained!

Bitcoin, Blockchain, and the Technologies of Our Future

Play Episode Listen Later Aug 5, 2023 13:19


https://youtu.be/c-bDpZoG--whttps://open.lbry.com/@NaomiBrockwell:4/pfsense-deep-dive:5Consumer grade routers are like leaky boats. But you can beef up your setup using things like the pfSense open source router and firewall software. In previous videos we've looks specifically at DNS settings, and programs like "Unbound" within pfSense. While these grant you granular control over your home network, they can also be confusing.This video dives deeper into "Unbound", the DNS resolver on pfSense, and explains what each of its many settings means so that you can get a better understanding of just what it's capable of.00:00 Intro01:09 DNS/pfSense Recap02:22 Unbound Settings Explained11:00 DNS Forwarder Explained11:38 ConclusionpfSense is a great tool that gives your router a power-up, enabling greater control, enhancing security, and the ability to set up more privacy for your internet activities. Special Thanks to John Todd for guiding us through the tutorial process!More information on Quad9:https://quad9.net/Brought to you by NBTV team members: Lee Rennie, Sam Ettaro, Cube Boy, Reuben Yap, Will Sandoval and Naomi BrockwellTo support NBTV, visit https://www.nbtv.media/support(tax-deductible in the US)NBTV's new eBook out now!Beginner's Introduction To Privacy - https://amzn.to/3WDSfkuBeware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.Visit the NBTV website:https://nbtv.mediaSupport the show

Bitcoin, Blockchain, and the Technologies of Our Future
DNS Blocklists Explained! Stop Internet Snooping!

Bitcoin, Blockchain, and the Technologies of Our Future

Play Episode Listen Later Jul 27, 2023 16:41


https://youtu.be/pURzvhYQ2FQhttps://open.lbry.com/@NaomiBrockwell:4/DNS-Blocklists:3These days, trackers infiltrate nearly every webpage. Advertisements demand your attention and monitor your online movements. Your own devices and software send telemetry back to manufacturers and developers, leaking all kinds of information about your activities. DNS blocklists can help you regain control over your network traffic. They can stop your devices from ever connecting to certain data tracking sites, malicious content, or servers that collect telemetry.In this video, we explain exactly how they work, and how to set them up on your home network using the open source router and firewall software, pfSense.00:00 Intro00:53 Understanding DNS Blocklists02:32 Setting Up DNS Blocklists13:36 Note for Quad9 Users14:17 The Looming Threat15:12 ConclusionDNS blocklists and the reports they generate are a great way to become more aware of how our data is being collected and our privacy invaded without us realizing.Special Thanks to John Todd for guiding us through the tutorial process!More information about Quad9:https://quad9.net/Brought to you by NBTV team members: Lee Rennie, Sam Ettaro, Cube Boy, Will Sandoval and Naomi BrockwellTo support NBTV, visit https://www.nbtv.media/support(tax-deductible in the US)NBTV's new eBook out now!Beginner's Introduction To Privacy - https://amzn.to/3WDSfkuBeware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.Visit the NBTV website:https://nbtv.mediaSupport the show

Bitcoin, Blockchain, and the Technologies of Our Future
Encrypt Your DNS (STOP Your ISP SNOOPING!)

Bitcoin, Blockchain, and the Technologies of Our Future

Play Episode Listen Later Jun 25, 2023 12:11


https://youtu.be/xAo61IaXun8https://open.lbry.com/@NaomiBrockwell:4/encrypted-DNS:dWe presume what we search for on the internet stays private. But you might be leaking all of your internet activity through something called a DNS request. It's possible that every site you want to visit is being collected and sold by your ISP, or monitored by countless other entities.In this video we review what DNS is, and explain how to encrypt your DNS requests, to stop unwanted snooping on your internet activity.00:00 Intro00:45 Overview00:53 What is DNS?03:48 Protecting Your DNS?07:31 Setting Up Encrypted DNS07:56 Tutorial09:55 ConclusionProtecting DNS privacy should be a part of everyone's online safety practices. We want to be able to navigate the internet safely and with the peace of mind that not everything we're doing is under constant surveillance. As always, we have no partnership with Quad9 or any other company, we just like to spread awareness of tools that we think will help people preserve their rights online. You can support our free educational content here:https://www.nbtv.media/support(tax-deductible in the US)Be sure to check out all the previous and upcoming videos in our Private Home Network series!https://youtube.com/playlist?list=PLt3zZ-N423gWfjOHM48kkGTm3ego-CPUYSpecial Thanks to John Todd for guiding us through the tutorial process!Brought to you by NBTV team members: Lee Rennie, Sam Ettaro, Reuben Yap, Cube Boy, Will Sandoval and Naomi BrockwellNBTV's new eBook out now!Beginner's Introduction To Privacy - https://amzn.to/3WDSfkuBeware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.Visit the NBTV website:https://nbtv.mediaSupport the show

Bitcoin, Blockchain, and the Technologies of Our Future

https://youtu.be/oSZYlU-cfzYhttps://open.lbry.com/@NaomiBrockwell:4/Sony-v-internet:eThe Internet has transformed the way we access knowledge, and its neutral infrastructure is supposed to be free from government influence or corporate censorship. But the internet as we know it is under threat.Sony music has brought a legal attack against a critical part of the Internet's infrastructure -- the DNS resolver.In this video we'll explain why Sony is attacking critical infrastructure of the internet, why this is terrifying for the future of free online expression and access to information, and what you can do to help.00:00 Intro00:50 What is a DNS Resolver02:07 Sony's Lawsuit06:35 A Censored Internet?10:55 How You Can Help11:13 ConclusionThe outcome of this case will have far-reaching consequences for the Future of the Internet. We highly encourage you to spread the word!Godspeed to the Quad9 team! Learn more here: https://quad9.net/newsBrought to you by NBTV team members: Lee Rennie, Sam Ettaro, Will Sandoval and Naomi BrockwellTo support NBTV, visit https://www.nbtv.media/support(tax-deductible in the US)NBTV's new eBook out now!Beginner's Introduction To Privacy - https://amzn.to/3WDSfkuBeware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.Visit the NBTV website:https://nbtv.mediaSupport the show

Security Now (MP3)
SN 914: Sony Sues Quad9 - Polynonce attack, Germany Huawei ban, Plex Media Server defect, Andor review

Security Now (MP3)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf   Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

Security Now (Video HI)
SN 914: Sony Sues Quad9 - Polynonce attack, Germany Huawei ban, Plex Media Server defect, Andor review

Security Now (Video HI)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

All TWiT.tv Shows (MP3)
Security Now 914: Sony Sues Quad9

All TWiT.tv Shows (MP3)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf   Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

Security Now (Video HD)
SN 914: Sony Sues Quad9 - Polynonce attack, Germany Huawei ban, Plex Media Server defect, Andor review

Security Now (Video HD)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

Radio Leo (Audio)
Security Now 914: Sony Sues Quad9

Radio Leo (Audio)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

Security Now (Video LO)
SN 914: Sony Sues Quad9 - Polynonce attack, Germany Huawei ban, Plex Media Server defect, Andor review

Security Now (Video LO)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

All TWiT.tv Shows (Video LO)
Security Now 914: Sony Sues Quad9

All TWiT.tv Shows (Video LO)

Play Episode Listen Later Mar 15, 2023 128:55


Picture of the Week. Another Malicious Chrome Extension. Germany to join the Huawei & ZTE ban. Putting "phishing" into perspective. The Polynonce attack. Plex's RCE now in CISA's KEV. Sci-Fi: Andor. Sony Sues Quad9. Show Notes: https://www.grc.com/sn/SN-914-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: fortra.com bitwarden.com/twit plextrac.com/twit

Podkast
Episode #46 - Ready or not, here AI come

Podkast

Play Episode Listen Later Mar 14, 2023 94:21


Nach einer etwas längeren terminbedingten Pause sind wir zurück mit Feedback, persönlichen Bastelprojekten und einem Talk-Thema zu: ChatGPT - Weil ihr davon in den letzten Monaten noch nicht genug gehört habt ;) Auch in den News sprechen wir über KI, denn es gibt nun die Möglichkeit, mächtige Language Models auch auf der eigenen Hardware auszuführen. Ebenfalls mit KI zu tun hat Samsungs neuer Mond-Filter, welcher dafür sorgt, dass das Foto vom Mond immer perfekt aussieht. Aus der Saga Twitter und dem Fediverse gibt es Entwicklungen, denn nun hat Meta entschieden statt dem Metaverse nun das Fediverse in Angriff zu nehmen. Gibt es bald ein Rebranding von Meta zu Fedi? Weiterhin sprechen wir über den Flipper Zero, und was dieser mit Brasilien zu tun hat, über die LIDL-Cloud STACKIT, sowie über das Quad9 v. Sony-Urteil, welches möglicherweise starke Auswirkungen auf die Freiheit im Netz haben könnte. Speaking of Freiheit: Die Polizei darf nun Fingerabdrücke zum Entsperren von Smartphones verwenden, und NVIDIA hat sich die Freiheit genommen, ihr 4090 Flaggschiff etwas zu nerfen. Und zu guter Letzt sprechen wir natürlich auch über die svb (Silicon Valley Bank) und die Signature Bank, welche... schon mal bessere Zeiten gesehen haben. Viel Spaß!

Techlore Talks
Quad9 vs Sony, & The State of Linux Phones

Techlore Talks

Play Episode Listen Later Mar 12, 2023 40:33


Episode #7. We didn't have one topic to cover, so here are many in a single episode. Enjoy! NOTE: This was never published here, so apologies for the delay.—Timestamps:00:00 Introduction 00:25 Bluesky, Facebook's Federated Platform, & others03:27 Librem 5 Refund, & State of Linux Phones08:05 Cerebral selling private health data09:21 A lot on HIPAA....15:11 Browser profiles, & Jonah's Arc experience19:11 South Park Worldwide Privacy Tour episode21:12 F-Droid getting faster repo updates21:36 Quad9 vs Sony court ruling23:48 Twitter not publishing transparency reports26:09 Brave News not syncing across clients!29:50 Brave's BAT, & Signal's MobileCoin31:08 SimpleX VC funding, & comments on messengers34:27 Throwback to CTemplar, & Project Sustainability36:47 HP locking out third-party ink on printers37:27 GitHub making 2FA mandatory38:03 Signal's recent blog, and the UK anti-encryption bill—Techlore Talks:Video PlaylistRSS Feed—Techlore Links:HomepageTechlore ForumGo Incognito CourseSupport Techlore! Get full access to Techlore Dispatch at dispatch.techlore.tech/subscribe

The Internet Report
Unpacking the Dec. 12 Quad9 BGP Route Leak | Outage Deep Dive

The Internet Report

Play Episode Listen Later Dec 14, 2022 26:34


Starting at ~12:12 UTC on Dec 12, 2022, an ISP in the Democratic Republic of Congo leaked a route belonging to the Quad9 DNS service, causing some traffic, including Verizon US customer traffic, to get routed to Africa for ~90 minutes. High traffic loss was observed throughout the incident which was resolved at ~13:40 UTC. 00:00 Welcome: This is The Internet Report, where we uncover what's working and what's breaking on the Internet—and why. Join our co-hosts Mike Hicks, Principal Solutions Analyst, and Kemal Sanjta, Principal Internet Architect, both from ThousandEyes, as they discuss the December 12th Quad9 BGP route leak. 00:56 Under the Hood: Reviewing the Quad9 BGP route leak as seen in the ThousandEyes platform. Explore the incident yourself in the ThousandEyes platform at: https://aioiqfxeunngihtwnkphnuzazgloaiju.share.thousandeyes.com/ Questions? Feedback? Send us an email at internetreport@thousandeyes.com

Crucial Tech
Episode 6.12 -- Quad9: Where you should start your cybersecurity program

Crucial Tech

Play Episode Listen Later Oct 7, 2022 23:07


I was pleasantly introduced to a non-profit cybersecurity company this week. Quad9 was established 6 years ago with the goal of reducing human error as the source of breaches, which makes of more than 90 percent of all successful cyberattacks. And they do it for free. Their website (www.quad9.com) has a lot of easy to understand and use tools to block malicious actors from accessing your systems and data. Check it out. --- Send in a voice message: https://anchor.fm/crucialtech/message Support this podcast: https://anchor.fm/crucialtech/support

Breitband - Medien und digitale Kultur (ganze Sendung) - Deutschlandfunk Kultur
Deepfake, Sony versus Quad9, Podcastkritik "Inside G20" (Sendung)

Breitband - Medien und digitale Kultur (ganze Sendung) - Deutschlandfunk Kultur

Play Episode Listen Later Jul 2, 2022 29:38


Linß,Vera; Böttcher, Martinwww.deutschlandfunkkultur.de, BreitbandDirekter Link zur Audiodatei

sony deepfakes martinwww quad9 podcastkritik
Breitband - Medien und digitale Kultur (ganze Sendung) - Deutschlandfunk Kultur
Deepfake, Sony vs Quad9, Podcastkritik Inside G20 (Sendung)

Breitband - Medien und digitale Kultur (ganze Sendung) - Deutschlandfunk Kultur

Play Episode Listen Later Jul 2, 2022 29:38


Linß,Vera; Böttcher, MartinDirekter Link zur Audiodatei

sony deepfakes quad9 podcastkritik
Breitband - Medien und digitale Kultur (ganze Sendung) - Deutschlandfunk Kultur
Deepfake, Sony versus Quad9, Podcastkritik "Inside G20" (Sendung)

Breitband - Medien und digitale Kultur (ganze Sendung) - Deutschlandfunk Kultur

Play Episode Listen Later Jul 2, 2022 29:38


Linß,Vera; Böttcher, Martinwww.deutschlandfunkkultur.de, BreitbandDirekter Link zur Audiodatei

sony deepfakes martinwww quad9 podcastkritik
Breitband - Medien und digitale Kultur - Deutschlandfunk Kultur
Sony vs. Quad9 - Ein Urheberrechtsstreit und das freie Internet

Breitband - Medien und digitale Kultur - Deutschlandfunk Kultur

Play Episode Listen Later Jul 2, 2022 7:28


Linß,Vera; Böttcher, Martin; Fichter, AdrienneDirekter Link zur Audiodatei

Breitband - Medien und digitale Kultur - Deutschlandfunk Kultur
Urheberrechtsklage von Sony gegen Internetdienst Quad9 - „Totale globale Zensur"

Breitband - Medien und digitale Kultur - Deutschlandfunk Kultur

Play Episode Listen Later Jul 2, 2022 7:28


Weil er auf eine Website mit urheberrechtlich illegalen Inhalten weiterleitet, wird der Dienst Quad9 verklagt. Es ist ein Kampf mit ungleichen Mitteln – zwischen dem Musikriesen Sony und einer Stiftung. Auf dem Spiel stehe auch das freie Internet.Adrienne Fichter im Gespräch mit Vera Linß und Martin Böttcherwww.deutschlandfunkkultur.de, BreitbandDirekter Link zur Audiodatei

Martin Uncut
April 8 - DNS and can it be good?

Martin Uncut

Play Episode Listen Later Apr 8, 2022 11:38


- Nothing like waiting for new toys - I was hoping my new NAS was arriving today - but no - not even shipped.  - DNS - Domain Name System  - PhoneBook of the internet translates human readable names (domain-names) to IP-adresses that can be used by computers.  - It works like a tree - with root servers - top–domains - domains and hosts or subdomains. To find a name you traverse the tree (or the DNS-server you use traverses the tree). - Caching is used to make the loads lower.  - DNS is interesting since it old and built by trust - and today that is not very safe.  - We can secure our DNS-data by signing it - hindering DNS-servers providing wrong information or spoofing DNS-names.  - We can encrypt the DNS-querys increasing privacy.  - Which DNS-server are you using - who can se what you access? Google? Your telco?  - I have switched to use Quad9 - that provide a non-logging DNS-server to secure your privacy. You can also use their DNS-over-TLS or DNS-over-HTTPS solution to increase your privacy more.  - Quad9 also have block-list that stops you from getting to malicious sites (optional).  - Quad9.net

Martin Uncut
April 7 - pfSense and VPNs

Martin Uncut

Play Episode Listen Later Apr 7, 2022 9:14


Fun to be back - yesterdays episode (Ep 122) - was recorded at home in the closet, on my iPad, while taking care of my sick 3 year old. That explains the not ideals sound quality.Situation before I started this projectOffice (or man cave) - old Linksys WRTG router. NAT.Home - telco provided switch (technicolor) - had it for 6-7 years - never changed any passwords. Super slowAt home I got a set of Netgate WIFI 6 router and satelites (from Dreves)Wanted to be able to connect with the network at the office remotely epecially since I'm planning to have statiotionary equipment there lika a computer and a NAS.NAT being an issue.Looked around and found pfSense (open source fw ).Wanted an applience - not a computer around - especially not at home.2100, 3100/4100 and 6100 - choose the expensive one (because the amount of data it can push through)Probably over did it a bit - but atleast it will not dissapoint meOne at home and one at the officeCurrently for firewall and routing and also a OpenVPN connection between the sites where I route traffic.Currently main use of that tunnel is to have access to my NAS from both directions. The NAS it not overly used since it is 10+ years old and I don't trust it to live - thus it will be exchanged very soon.How is it done?Basic setup of the unitConfigure the interfacesOn the home unit - configured as an OpenVPN server with a preshared keyOn the office unit - configured as an OpenVPN clientHome has a fairly static IP (same for at least 3 years now) - easy for the office to connect to that.I also setup some watch dogsProblem with working when I was in the office - but stopped working as soon as I left. Pluggin out my laptop from LAN1 caused the interface go down and with that the network.What will I doChanged DNS provider - setup a local resolver that will forward to Quad9. Local routing to push all DNS-traffic to the local resolver.Setup a OpenVPN Server for road-warrior setup - this way I should be able to get to the office and the NAS/Computer from whereever I am and also from my iPad.Additional security review and modifications - IDS and monitoring?What is my thoughts so farI have used it for a month now.Stable - hardware and software. Tunnel never gone down.Insanly over powered for meWhat would I have done differently - probably gone with the 4100 instead.

CYBER24
Episode 158: Quad9 and the Future of DNS

CYBER24

Play Episode Listen Later Mar 22, 2022 21:22


DNS Security has remained stagnant for 30 years; in this episode, we sits down with John Todd, the general manager of Quad9—a company specializing in DNS security—to talk about the future of the protocol. 

Linux User Space
Episode 2:18: All It Takes Is 15 Minutes

Linux User Space

Play Episode Listen Later Feb 28, 2022 100:50


Timestamps 0:00 Cold Open 1:58 A Disk Upgrade (SK Hynix S31) 10:30 Feedback: Hakerdefo 34:19 Leo's DNS Soapbox 44:14 Feedback: Steve M 54:34 Plasma's 15-Minute Bugs 59:54 Linux Has Its Flaws, but... 1:10:43 Housekeeping 1:17:21 App Focus: Nextcloud 1:36:13 Next Time: Slackware 1:39:23 Stinger Coming up in this episode 1. Leo stores it away 2. Feedback safely 3. Tips for your Slackware 4. All it takes is 15 minutes... 5. We have something Awesome for you 6. Our app is built on clouds. Banter - Leo's New SSD SK Hynix Gold s31 (https://ssd.skhynix.com/gold_s31/) Feedback items Hackerdefo Use Cloudflare (https://developers.cloudflare.com/1.1.1.1/1.1.1.1-for-families/linux) or other DNS services Use DNS over HTTPS (https://developers.cloudflare.com/1.1.1.1/1.1.1.1-for-families#dns-over-https-doh) in your browser Use system wide advert/malware blocker. Plenty of tools out there but I'll plug a script of mine (https://github.com/hakerdefo/pmiab) Zettlr (https://www.zettlr.com/) VsCodium (https://vscodium.com/) Hackerdefo's blog (https://hakerdefo.github.io) Hackerdefo's projects (https://github.com/hakerdefo) Leo switched to Quad9 (https://www.quad9.net/) Some other great tools. * PiHole (https://pi-hole.net/) * AdGuard (https://adguard.com/en/welcome.html) * DNS Checking can be done with IPVoid (https://www.ipvoid.com/dns-reputation/) * Quad9 has a page (https://www.quad9.net/result) where you can tell if something is blocked too. More from Hackerdefo SlackBuilds.org hasn't caught up with 15 (https://github.com/Ponce/slackbuilds/). You can switch to "current" though. (https://github.com/Ponce/slackbuilds/wiki/configuring-the-current-repository-with-sbopkg) A couple of other resources that are useful related to SlackBuilds.org: SlackBuilds.org (https://slackbuilds.org/) A blog post about sbopkg, a handy tool (https://blog.jeaye.com/2015/07/09/sbopkg/) Steve(Mowest) Raspberry Pi model comparison (https://en.wikipedia.org/wiki/Raspberry_Pi#Model_comparison). The OG came out in 2012! PiVPN (https://www.pivpn.io/) YADM (https://yadm.io/) Steve's Blog post (https://discoverfoss.com/posts/yadm-02/) 15 Minute Bug Initiative from KDE (https://pointieststick.com/2022/01/18/the-15-minute-bug-initiative/) The bug list (https://tinyurl.com/plasma-15-minute-bugs) Check out Nate Graham's blog pointieststick (https://pointieststick.com) There are Linux bugs! Polkit bug last month (https://arstechnica.com/information-technology/2022/01/a-bug-lurking-for-12-years-gives-attackers-root-on-every-major-linux-distro/) bug in snapd (https://thehackernews.com/2022/02/new-linux-privilege-escalation-flaw.html) this bug in Samba (https://www.securityweek.com/samba-patches-critical-flaws-earned-researchers-big-rewards) Linux gets its security patches faster than any other software (https://www.zdnet.com/article/google-project-zero-finds-linux-developers-patch-security-holes-faster-than-anyone-else/) Housekeeping Awesome Open Source YouTube channel (https://m.youtube.com/channel/UCwFpzG5MK5Shg_ncAhrgr9g) Linux User Space subreddit (https://reddit.com/r/LinuxUserSpace/) Email us - contact@linuxuserspace.show Linux User Space Discord Server (https://linuxuserspace.show/discord) Our Matrix room (https://linuxuserspace.show/matrix) Support us at Patreon (https://patreon.com/linuxuserspace) Join us on Telegram (https://linuxuserspace.show/telegram) Follow us on Twitter (https://twitter.com/LinuxUserSpace) LUS is on Mastodon (https://mastodon.social/@linuxuserspace) Watch us on YouTube (https://linuxuserspace.show/youtube) Check out our website (https://linuxuserspace.show) App Focus Nextcloud (https://nextcloud.com/) Next Time We wrap up our thoughts on Slackware Slackware Linux (http://www.slackware.com/) Join us in two weeks when we return to the Linux User Space Stay tuned on Twitter, Mastodon, Telegram, Matrix, Discord whatever. Give us your suggestions on our subreddit r/LinuxUserSpace Join the conversation. Talk to us, and give us more ideas. We would like to acknowledge our top patrons. Thank you for your support! Contributor Nicholas CubicleNate LiNuXsys666 Jill and Steve WalrusZ sleepyeyesvince Paul Curtis Eduardo Matt W. Co-Producer Donnie Johnny Producer Bruno John Josh

Netzpodcast
NP004 Sony gegen Quad9, Winterkongress, NFT und Web3

Netzpodcast

Play Episode Listen Later Feb 20, 2022 52:53


Der Netzpodcast ist der neue Podcast der Digitalen Gesellschaft, der über die aktuellen netzpolitischen Themen mit Bezug zur Schweiz informiert und sie einordnet. In der vierten Folge vom Netzpodcast sprechen wir über Sony gegen Quad9, den Winterkongress sowie NFT und Web3.

Surveillance Report
Here's Why DNS Matters w/ John Todd from Quad9

Surveillance Report

Play Episode Listen Later Feb 15, 2022 53:33


Why does DNS matter for privacy, security, freedom, and the internet? We are thrilled to bring on John Todd from Quad9 to give us the inside scoop on DNS and how important it is for all of us. Quad9: https://quad9.net/ Dr Paul Vixie: https://www.farsightsecurity.com/about-farsight-security/team/vixie/ Quad9 Blog: https://quad9.net/news/blog Quad9 Donation Page: https://www.paypal.com/donate?token=KCPcRNowmH1fHS0O0kIM2OdnaiKH3wOaqZnBVC3eGBgrK3K0M7W9dt1So5QE3Ersq_ZRDDY9c9I04yZS 00:00 Introduction00:21 History of Quad906:57 What is DNS?09:48 What is a "recursive" DNS?13:05 Why does DNS matter?19:52 DNS & enforcing content policies20:59 Why should listeners change their default DNS?23:28 What makes Quad9 different and why should listeners consider Quad9?24:59 What is Quad9's business/funding model?29:03 DoH vs DoT36:35 John Todd's 7 DNS/tech predictions for 202237:39 Prediction 2: How can DNS help mitigate or prevent cyberattack?42:37 DNS stability vs security44:11 Prediction 6: What does the future of privacy regulation hold?47:00 Additional thoughts& comments48:38 Quad9 vs the Courts (and how you can help!)

Bli säker-podden
#153 Europeisk DNS med oroskrydda

Bli säker-podden

Play Episode Listen Later Jan 28, 2022 31:19


Ett nytt förslag vid namn DNS4EU föreslår att EU ska driva en egen DNS-tjänst. DNS-tjänster fungerar som internets motsvarighet till telefonböcker och kontaktlistor. DNS-tjänster översätter mellan lättihågkomliga domännamn som vi skriver i webbläsaren och svårihågkomliga IP-adresser som våra webbläsare ansluter till. Tack vare DNS kan du skriva nikkasystems.com i webbläsarens adressfält i stället för ett krångligt nummer. DNS4EU ska vara en integritetsvärnande DNS-tjänst som ligger i framkant när det gäller säkerhet. Den ska filtrera bort domäner som är kända för att sprida skadlig kod eller användas i nätfiskeattacker. Genom att göra sådan filtrering på DNS-nivå fungerar skyddet för samtliga internetanslutna produkter, oavsett vilket operativsystem som de kör. Men all filtrering innebär också risk för censur. Dessutom finns en tjänst vid namn Quad9: en europeisk DNS-tjänst som redan idag löser merparten av det som DNS4EU är tänkt att åstadkomma. Se fullständiga shownotes på https://go.nikkasystems.com/podd153.

Reality 2.0
Episode 93: Quad9 and DNS

Reality 2.0

Play Episode Listen Later Dec 3, 2021 55:58


Katherine Druckman, Doc Searls and Kyle Rankin talk to John Todd from Quad9 about DNS, privacy, security and their open DNS recursive service. Reality 2.0 around the web: Site/Blog/Newsletter (https://www.reality2cast.com) FaceBook (https://www.facebook.com/reality2cast) Twitter (https://twitter.com/reality2cast) YouTube (https://www.youtube.com/channel/UCdvdT3quikpi9sd5SxTGk3Q) Mastodon (https://linuxrocks.online/@reality2cast) Special Guests: John Todd and Kyle Rankin.

mnemonic security podcast
DNS security with Quad9

mnemonic security podcast

Play Episode Listen Later Feb 2, 2021 22:49


What are you doing to make the internet a safer and more private place?This episode, Robby welcomes John Todd, Executive Director of the non-profit organisation Quad9. Quad9 is a free, recursive DNS solution that partners with threat intelligence providers from all over the world to block websites that try to harm our computers (through things like malware, spyware, botnets, phishing sites, etc.).John chats with Robby about their DNS system, how they're different from most paid services, and their charter to making the internet a safer and more private place. He also shares some war stories and discusses what effects they're seeing from COVID-19 in their feed.https://www.quad9.net/Technical level: 2/5Host: Robby PeraltaProducer: Paul Jægerhttps://mnemonic.no/podcast 

Intego Mac Podcast
DNS, Lost Bitcoin, and the new Big Sur Control Center

Intego Mac Podcast

Play Episode Listen Later Jan 21, 2021 32:33


DNS is in the news, following a warning from the NSA and new malware. We discuss how common it is for law enforcement to crack smartphones, and how this should prompt you to choose a more secure passcode for your device. We look another bitcoin owner who's lost millions. And we discuss the new Control Center in macOS Big Sur. Show Notes: Brave becomes first browser to add native support for the IPFS protocol InterPlanetary File System The NSA warns enterprises to beware of third-party DNS resolver DNSpooq lets attackers poison DNS cache records 1.1.1.1 Quad9 OpenDNS Private Internet Access How law enforcement gets around your smartphone’s encryption If Hackers Crack a Six-Digit iPhone Passcode, They Can Get All Your Passwords Android One Man offers Newport council £50m if it helps find bitcoins in landfill How to Configure and Use Control Center in macOS Big Sur Bartender Control Strip Intego Mac Premium Bundle X9 is the ultimate protection and utility suite for your Mac. Download a free trial now at intego.com, and use this link for a special discount when you're ready to buy.

The Internet Report
Microsoft's Monday Outage Is a Lesson in App Complexity; Plus, Digging into Telstra's BGP Hijack (Week of Sept. 28-Oct. 4) | Outage Deep Dive

The Internet Report

Play Episode Listen Later Oct 6, 2020 16:13


This is The Internet Report, where we uncover what's working and what's breaking on the Internet—and why. On today's episode, we dive into a recent Azure AD disruption that significantly impacted access to Microsoft cloud services and apps (as well as third-party apps) for nearly three hours. We then went under the hood on a recent BGP hijacking in which Telstra began announcing routes to services that didn't belong to it, such as Quad9. Catch this episode to hear our take on these incidents, and see below for show links, some additional commentary on these outages, and a sneak preview of next week's episode.

The Cyberlaw Podcast
Using the internet to Cause Emotional Distress is a Felony?

The Cyberlaw Podcast

Play Episode Listen Later Jun 23, 2020 51:46


This is the week when the movement to reform Section 230 of the Communications Decency Act got serious. The Justice Department released a substantive report suggesting multiple reforms. I was positive about many of them (my views here). Meanwhile, Sen. Josh Hawley (R-MO) has proposed a somewhat similar set of changes in his bill, introduced this week. Nate Jones and I dig into the provisions, and both of us expect interest from Democrats as well as Republicans.  The National Security Agency has launched a pilot program to provide secure domain name system (DNS) resolver services for US defense contractors. If that's such a good idea, I ask, why doesn't everybody do it, and Nick Weaver tells us they can. Phil Reitinger's Global Cyberalliance offers Quad9 for this purpose.  Gus Hurwitz brings us up to date on a host of European cyberlaw developments, from terror takedowns (Reuters, Tech Crunch) to competition law to the rise of a disturbingly unaccountable and self-confident judiciary. Microsoft's Brad Smith, meanwhile, wins the prize for best marriage of business self-interest and Zeitgeist in the twenty-first century. Hackers used LinkedIn's private messaging feature to send documents containing malicious code which defense contractor employees were tricked into opening. Nick points out just what a boon LinkedIn is for cyberespionage (including his own), and I caution listeners not to display their tattoos on LinkedIn. Speaking of fools who kind of have it coming, Nick tells the story of the now former eBay executives who have been charged with sustained and imaginatively-over-the-top harassment of the owners of a newsletter that had not been deferential to eBay. (Wired, DOJ) It's hard to like the defendants in that case, I argue, but the law they've been charged under is remarkably sweeping. Apparently it's a felony to intentionally use the internet to cause substantial emotional distress. Who knew? Most of us who use Twitter thought that was its main purpose. I also discover that special protections under the law are extended not only to prevent internet threats and harassment of service animals but also horses of any kind. Other livestock are apparently left unprotected. PETA, call your office. Child abusers cheered when Zoom buckled to criticism of its limits on end-to-end encryption, but Nick insists that the new policy offers safeguards for policing misuse of the platform. (Ars Technica, Zoom) I take a minute to roast Republicans in Congress who have announced that no FISA reauthorization will be adopted until John Durham's investigation of FISA abuses is done, which makes sense until you realize that the FISA provisions up for reauthorization have nothing to do with the abuses Durham is investigating. So we're giving international terrorists a break from scrutiny simply because the President can't keep the difference straight. Nate notes that a story previewed in April has now been confirmed: Team Telecom is recommending the blocking of a Hong Kong-US undersea cable over national security concerns. Gus reminds us that a bitter trade fight between the US and Europe over taxes on Silicon Valley services is coming. (Politico, Ars Technica) Nick and I mourn the complete meltdown of mobile phone contact tracing. I argue that from here on out, some portion of coronavirus deaths should be classified as mechanogenic (caused by engineering malpractice). Nick proposes instead a naming convention built around the Therac-25.  And we close with a quick look at the latest data dump from Distributed Denial of Secrets. Nick thinks it's strikingly contemporaneous but also surprisingly unscandalizing. Download the 321st Episode (mp3).  You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@steptoe.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.

BSD Now
Episode 271: Automatic Drive Tests | BSD Now 271

BSD Now

Play Episode Listen Later Nov 8, 2018 68:01


MidnightBSD 1.0 released, MeetBSD review, EuroBSDcon trip reports, DNS over TLS in FreeBSD 12, Upgrading OpenBSD with Ansible, how to use smartd to run tests on your drives automatically, and more. ##Headlines MidnightBSD 1.0 now available I’m happy to announce the availability of MidnightBSD 1.0 for amd64 and i386. Over the years, many ambitious goals were set for our 1.0 release. As it approached, it was clear we wouldn’t be able to accomplish all of them. This release is more of a natural progression rather than a groundbreaking event. It includes many updates to the base system, improvements to the package manager, an updated compiler, and tools. Of particular note, you can now boot off of ZFS and use NVME SSDs and some AMD Radeon graphics cards support acceleration. AMD Ryzen support has greatly improved in this release. We also have added bhyve from FreeBSD. The 1.0 release is finally available. Still building packages for i386 and plan to do an amd64 package build later in the week. The single largest issue with the release process has been the web server performance. The CPU is overloaded and has been at solid 100% for several days. The server has a core i7 7700 in it. I’m trying to figure out what to buy as an upgrade so that we don’t continue to have this issue going forward. As it’s actually blocked in multiple processes, a 6 or 8 core chip might be an improvement for the workload… Download links: https://www.midnightbsd.org/download/ https://www.youtube.com/watch?time_continue=33&v=-rlk2wFsjJ4 ###MeetBSD Review MeetBSD 2018 took place at the sprawling Intel Santa Clara campus. The venue itself felt more like an olive branch than a simple friendly gesture by Intel. In truth it felt like a bit of an apology. You get the subtle sense they feel bad about how the BSD’s were treated with the Meltdown and Specter flaws. In fact, you may be right to think they felt a bit sorry towards the entire open source community. MeetBSD 2018 At most massive venues the parking is the first concern, not so here - in fact that was rather straightforward. No, the real challenge is navigating the buildings. Luckily I had help from navigator extraordinaire, Hadea, who located the correct building, SC12 quickly. Finding the entrance took a moment or two though. The lobby itself was converted by iXsystems efficiently into the MeetBSD expo hall, clean, efficient and roomy with registration, some seating, and an extra conference room for on-on-one sessions. On day two sponsor booths were also setup. All who showed up on day one were warmly greeted with badges, lanyards and goodies by Denise and her friendly team. Like every great BSD event, plenty of food was made available. And as always they make it look effortless. These events showcase iXsystem’s inherent generosity toward its community; with breakfast items in the back of the main auditorium room in the morning, boxed lunches, fruit and cookies at lunch time, and snacks for the rest of the day. But just in case your still hungry, there is a pizza meetup in another Intel room after day one and two. MeetBSD leverages it’s realistically small crowd size on day one. The morning starts off with introductions of the entire group, the mic is passed around the room. The group is a good mix of pros in the industry (such as Juniper, Intel, Ebay, Groupon, Cisco, etc), iX staff, and a few enthusiast. Lots of people with a focus or passion for networking. And, of course, some friendly Linux bashing went down for good measure, always followed by a good natured chuckle. MeetBSD Gives me The Feels I find that I am subtly unnerved at this venue, and at lunch I saw it clearly. I have always had a strong geek radar, allowing me to navigate a new area (like Berkeley for MeetBSD of 2016, or even SCALE earlier this year in Pasadena), and in a glance I can see who is from my conference and who isn’t. This means it is easy, nearly effortless to know who to greet with a smile and a wave. These are MY people. Here at the Intel campus though it is different. The drive in alone reveals behemoth complexes all with well known tech names prominently displayed. This is Silicon Valley, and all of these people look like MY people. So much for knowing who’s from my conference. Thank goodness for those infamous BSD horns. None-the-less I am struck by how massive these tech giants are. And Intel is one of the largest of those giants, and see the physical reminders of this fact brought home the significance that they had opened their doors, wifi, and bathrooms to the BSD community. ###[EuroBSDcon 2018 Trip Reports] https://www.freebsdfoundation.org/blog/eurobsd-2018-trip-report-joseph-mingrone/ https://www.freebsdfoundation.org/blog/eurobsd-2018-trip-report-vinicius-zavam/ https://www.freebsdfoundation.org/blog/eurobsd-2018-trip-report-emmanuel-vadot/ ##News Roundup DNS over TLS in FreeBSD 12 With the arrival of OpenSSL 1.1.1, an upgraded Unbound, and some changes to the setup and init scripts, FreeBSD 12.0, currently in beta, now supports DNS over TLS out of the box. DNS over TLS is just what it sounds like: DNS over TCP, but wrapped in a TLS session. It encrypts your requests and the server’s replies, and optionally allows you to verify the identity of the server. The advantages are protection against eavesdropping and manipulation of your DNS traffic; the drawbacks are a slight performance degradation and potential firewall traversal issues, as it runs over a non-standard port (TCP port 853) which may be blocked on some networks. Let’s take a look at how to set it up. Conclusion We’ve seen how to set up Unbound—specifically, the local_unbound service in FreeBSD 12.0—to use DNS over TLS instead of plain UDP or TCP, using Cloudflare’s public DNS service as an example. We’ve looked at the performance impact, and at how to ensure (and verify) that Unbound validates the server certificate to prevent man-in-the-middle attacks. The question that remains is whether it is all worth it. There is undeniably a performance hit, though this may improve with TLS 1.3. More importantly, there are currently very few DNS-over-TLS providers—only one, really, since Quad9 filter their responses—and you have to weigh the advantage of encrypting your DNS traffic against the disadvantage of sending it all to a single organization. I can’t answer that question for you, but I can tell you that the parameters are evolving quickly, and if your answer is negative today, it may not remain so for long. More providers will appear. Performance will improve with TLS 1.3 and QUIC. Within a year or two, running DNS over TLS may very well become the rule rather than the experimental exception. ###Upgrading OpenBSD with Ansible My router runs OpenBSD -current A few months ago, I needed software that had just hit the ports tree. I didn’t want to wait for the next release, so I upgraded my router to use -current. Since then, I’ve continued running -current, which means upgrading to a newer snapshot every so often. Running -current is great, but the process of updating to a newer snapshot was cumbersome. Initially, I had to plug in a serial cable and then reboot into bsd.rd, hit enter ten times, then reboot, run sysmerge and update packages. I eventually switched to upobsd to be able to upgrade without the need for a serial connection. The process was better, but still tiresome. Usually, I would prepare the special version of bsd.rd, boot on bsd.rd, and do something like wash the dishes in the meantime. After about ten minutes, I would dry my hands and then go back to my workstation to see whether the bsd.rd part had finished so I could run sysmerge and pkgadd, and then return to the dishes while it upgraded packages. Out of laziness, I thought: “I should automate this,” but what happened instead is that I simply didn’t upgrade that machine very often. (Yes, laziness). With my router out of commission, life is very dull, because it is my gateway to the Internet. Even services hosted at my place (like my Mastodon instance) are not reachable when the router is down because I use multiple VLANs (so I need the router to jump across VLANs). Ansible Reboot Module I recently got a new job, and one of my first tasks was auditing the Ansible roles written by my predecessors. In one role, the machine rebooted and they used the waitforconnection module to wait for it to come back up. That sounded quite hackish to me, so out of curiosity, I tried to determine whether there was a better way. I also thought I might be able to use something similar to further automate my OpenBSD upgrades, and wanted to assess the cleanliness of this method. ;-) I learned that with the then-upcoming 2.7 Ansible release, a proper reboot module would be included. I went to the docs, which stated that for a certain parameter: I took this to mean that there was no support for OpenBSD. I looked at the code and, indeed, there was not. However, I believed that it wouldn’t be too hard to add it. I added the missing pieces for OpenBSD, tested it on my poor Pine64 and then submitted it upstream. After a quick back and forth, the module’s author merged it into devel (having a friend working at Red Hat helped the process, merci Cyril !) A couple days later, the release engineer merged it into stable-2.7. I proceeded to actually write the playbook, and then I hit a bug. The parameter reboottimeout was not recognized by Ansible. This feature would definitely be useful on a slow machine (such as the Pine64 and its dying SD card). Again, my fix was merged into master by the module’s author and then merged into stable-2.7. 2.7.1 will be the first release to feature these fixes, but if you use OpenBSD -current, you already have access to them. I backported the patches when I updated ansible. Fun fact about Ansible and reboots: “The winreboot module was […] included with Ansible 2.1,” while for unix systems it wasn’t added until 2.7. :D For more details, you can read the module’s author blog article. The explanations Ansible runs my script on the remote host to fetch the sets. It creates an answer file from the template and then gives it to upobsd. Once upobsd has created the kernel, Ansible copies it in place of /bsd on the host. The router reboots and boots on /bsd, which is upobsd’s bsd.rd. The installer runs in autoupdate mode. Once it comes back from bsd.rd land, it archives the kernel and finishes by upgrading all the packages. It also supports upgrading without fetching the sets ahead of time. For instance, I upgrade this way on my Pine64 because if I cared about speed, I wouldn’t use this weak computer with its dying SD card. For this case, I just comment out the pathsets variable and Ansible instead creates an answer file that will instruct the installer to fetch the sets from the designated mirror. I’ve been archiving my kernels for a few years. It’s a nice way to fill up / keep a history of my upgrades. If I spot a regression, I can try a previous kernel … which may not work with the then-desynchronized userland, but that’s another story. sysmerge already runs with rc.sysmerge in batch mode and sends the result by email. I don’t think there’s merit to running it again in the playbook. The only perk would be discovering in the terminal whether any files need to be manually merged, rather than reading exactly the same output in the email. Initially, I used the openbsdpkg module, but it doesn’t work on -current just before a release because pkgadd automatically looks for pub/OpenBSD/${release}/packages/${arch} (which is empty). I wrote and tested this playbook while 6.4 was around the corner, so I switched to command to be able to pass the -Dsnap parameter. The result I’m very happy with the playbook! It performs the upgrade with as little intervention as possible and minimal downtime. o/ ###Using smartd to automatically run tests on your drives Those programs can “control and monitor storage systems using the Self-Monitoring, Analysis and Reporting Technology System (SMART) built into most modern ATA/SATA, SCSI/SAS and NVMe disks. In many cases, these utilities will provide advanced warning of disk degradation and failure.” See the smartmontools website for more information. NOTE: “Due to OS-specific issues and also depending on the different state of smartmontools development on the platforms, device support is not the same for all OS platforms.” – use the documentation for your OS. I first started using smartd in March 2010 (according to that blog post, that’s when I still writing on both The FreeBSD Diary and this blog). Back then, and until recently, all I did was start smartd. As far as I can tell, all it did was send daily status messages via the FreeBSD periodic tools. I would set my drive devices via dailystatussmartdevices in /etc/periodic.conf and the daily status reports would include drive health information. Two types of tests My original abandoned attempt How do you prove it works? Looking at the test results Failed drive to the rescue smartd.conf I am using supernews ##Beastie Bits Decent Pics of “Relayd & Httpd Mastery” signature A Unix Shell poster from 1983 Cambridge UNIX historians (Cambridge, United Kingdom) Goals for FreeBSD 13 September/October 2018 Issue of the FreeBSD Journal Now Available Using acme.sh for Let’s Encrypt certificates on pkgsrc.org servers Deploying Anycast DNS Using OpenBSD and BGP How to check your data integrity? ##Feedback/Questions Raymond - MeetBSD California Dev Summit Videos: https://www.youtube.com/playlist?list=PLb87fdKUIo8TNG6f94xo9_W-XXrEbqgWI Conference Videos: https://www.youtube.com/playlist?list=PLb87fdKUIo8Q41aoPE6vssP-uF4dxk86b Conference videos are still being processed, the rest should appear over the next few weeks. Greg - Stable vs Release Mjrodriguez - Open/FreeBSD support for Single Board computers Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv

Chit Chat Across the Pond
CCATP #533- Bart Busschots on Choosing a DNS Resolver

Chit Chat Across the Pond

Play Episode Listen Later Apr 14, 2018 100:37


In this "Lite" version of Chit Chat Across the Pond (within a NosillaCastaway's definition of Lite), Bart teaches us about DNS Resolvers and helps give us the information to choose the right one for us. To get us there he starts by explaining the background technologies. He explains DNS and how there's two kinds of servers, he explains DNS Name resolution and why caching is important, and the security problems (and solutions) of DNS. Then he explains how third-party DNS providers can solve some of these problems. He explains their motivations which will inform your own decision. Finally (at about the 1 hour mark) he walks through the solutions offered by OpenDNS, Google, Quad9 and Cloudflare. I loved this episode and you can tell Bart really loves talking about DNS.

google bart lite pond resolver dns cloudflare opendns quad9 bart busschots chit chat across
Chit Chat Across the Pond Lite
CCATP #533- Bart Busschots on Choosing a DNS Resolver

Chit Chat Across the Pond Lite

Play Episode Listen Later Apr 14, 2018 100:37


In this "Lite" version of Chit Chat Across the Pond (within a NosillaCastaway's definition of Lite), Bart teaches us about DNS Resolvers and helps give us the information to choose the right one for us. To get us there he starts by explaining the background technologies. He explains DNS and how there's two kinds of servers, he explains DNS Name resolution and why caching is important, and the security problems (and solutions) of DNS. Then he explains how third-party DNS providers can solve some of these problems. He explains their motivations which will inform your own decision. Finally (at about the 1 hour mark) he walks through the solutions offered by OpenDNS, Google, Quad9 and Cloudflare. I loved this episode and you can tell Bart really loves talking about DNS.

google bart lite pond resolver dns cloudflare opendns quad9 bart busschots chit chat across
DIY Cyber Guy
#8 - Avoiding Facebook Spyware, and Quality Security Tools

DIY Cyber Guy

Play Episode Listen Later Mar 1, 2018 53:05


Do you use Facebook? This episode is ‘must listen’ for you! Facebook has a new ‘Protection’ product that is the opposite of protection, or at least the opposite of privacy.  Actually, it meets the definition of spyware. We will tell you what information they want to collect about you, and how to avoid this feature. Also, we talk to the Chief Executive Officer and President of the Global Cyber Alliance, Phil Reitinger, who talks about how his non-profit is providing high-quality free tools (no kidding, really free!) to help you stay safe online!

kompot
016 Autostopem po infostradzie, cz. 2

kompot

Play Episode Listen Later Jan 23, 2018 90:23


Druga część cyklu, w którym staramy się wyjaśnić co piszczy w sieciach komputerowych. Opowiadamy jak wybrać switch, jak wygląda ramka ethernetowa i "odtajniamy" wybrane protokoły sieciowe. Bez zbędnych ceregieli zapraszamy do konsumpcji kolejnego, 16 już kompotu! Poniżej ściąga do programów i usług, o których wspominamy w podkaście. Pupularne i polecane przez nas serwery DNS: Google – 8.8.8.8, 8.8.4.4 OpenDNS – 208.67.222.222, 208.67.220.220 Quad9 – 9.9.9.9, 149.112.112.112 test prędkości wszelakich serwerów DNS dla Windows – Domain Name Speed Benchmark Programy do skanowania sieci: Network Radar (MAS), (link), Scany (App Store), LanScan (MAS), (link), Debookee (link), Wireshark (link) bezpłatna usługa skanowania otwartych portów na naszym routerze – ShieldsUP! Nasz podcast znajdziecie w iTunes (link), możecie też dodać do swojego ulubionego czytnika RSS (link) lub przesłuchać bezpośrednio w przeglądarce (link). Zapraszamy do kontaktu na Twitterze: Remek Rychlewski @RZoG. Marek Telecki @mantis30. Natomiast całe przedsięwzięcie firmuje konto @ApplejuicePl. Jesteśmy również dostępni dla Was pod adresem e-mail kompot[at]applejuice.pl

Pentaradio
pentaradio24: NEIN.NEIN.NEIN.NEIN (DNS und Quad9)

Pentaradio

Play Episode Listen Later Dec 25, 2017


Das Pentaradio vom Dezember behandelt das System, welches aus Namen IP-Adressen macht, und den neuen Dienst 9.9.9.9. Congressbedingt wurde diese Folge letzten Freitag live im Eigenbaukombinat in Halle aufgezeichnet. Dank für das Podcast-Release geht an Simon.

Hey Techies Show
115 – December 7, 2017

Hey Techies Show

Play Episode Listen Later Dec 14, 2017 106:09


Show notes – http://heytechiesshow.com/shows/hts115/ Michael, Bruce and The Guru discuss our show absence, snow event, Instagram, YouTube Amazon feud, Facebook, Bitcoin, Apple issues, Bruce’s new phone, Amazon Key, Quad9.net, American airline pilot off time issues, Right to be forgotten, What device to get a child, Third party keyboard Apps, Walmart’s Autonomous floor scrubber Emma. Plus […]

Firewalls Don't Stop Dragons Podcast

The gift-giving season is upon us and technology presents are always popular! But what you may not realize that the hackers and marketers out there are secretly hoping you’ll give your friends and family certain gifts, too! In this special holiday episode, I’ll tell you about some of the best and the worst holiday gifts and accessories, from a security and privacy viewpoint. Thinking about giving someone a DNA analysis kit? You might want to think again! Which computers and smart devices are the most secure? And are there products I can buy to help make them more secure? You bet! Tune in - I’ve got you covered! For Further Insight: Read this before buying a DNA test: https://vitals.lifehacker.com/what-you-should-know-before-you-gift-someone-a-dna-test-1820774515 Best WiFi Routers: https://thewirecutter.com/reviews/best-wi-fi-router/ Setting your Router’s DNS to Quad9: http://firewallsdontstopdragons.com/evading-malware-quad9-dns/ Data and Goliath: https://www.schneier.com/books/data_and_goliath/ Little Brother: https://craphound.com/littlebrother/download/ Help me to help you! Visit: https://patreon.com/FirewallsDontStopDragons

Conciencia Virtual
#Ep7 Vulnerabilidades en Antivirus y Tipos de Ataque en Office

Conciencia Virtual

Play Episode Listen Later Nov 28, 2017 17:45


Estaremos comentando todo lo relacionado a las Vulnerabilidades que presentan actualmente los antivirus y las formas de ataques utilizadas por los Cibercriminales para aprovechar los paquetes de Microsoft Office como vectores de ataques, ademas estaremos hablando sobre la Quad9 el nuevo DNS publico que ofrece protegerte de los ataques informáticos en la web.

Techview Podcast
Techview-Podcast-17-44(Folge418)

Techview Podcast

Play Episode Listen Later Nov 19, 2017


In dieser Folge bestaune ich den Quantensprung bei Firefox, wundere mich über Canonical, informiere euch über Quad9 und Spiele eine Partie Star Wars Battlefront 2 sowie einiges mehr. Themen: Firefox 57 - Quantum Leap Canonical heuert neue Mir Entwickler an Quad9 der Alternative DNS Pfeife der Woche: Microsoft und die Updates Distro der Woche: Netrunner 17.10 Spiel der Woche: Star Wars Battlefront 2 Wie immer wünsche ich viel Spaß beim reinhören ;)