@jpmens "DoH is an over the top bypass of enterprise and other private networks. But DNS is part of the control plane, and network operators must be able to monitor and filter it. Use DoT, never DoH."
I agree on the use DoT part, but it seems that Vixie is angry at the sole purpose of DoH 🤔
Paul Vixie, one of the architects of the DNS, reckoned it's nothing short of a disaster. On Friday, he tweeted: "RFC 8484 is a cluster duck for internet security. Sorry to rain on your parade. The inmates have taken over the asylum."
"With the arrival of OpenSSL 1.1.1, an upgraded Unbound, and some changes to the setup and init scripts, FreeBSD 12.0, currently in beta, now supports DNS over TLS out of the box." https://blog.des.no/2018/10/dns-over-tls-in-freebsd-12/ #DoT
"To me, DoH is partly necessary because the "DNS world" has failed to ship and deploy secure and safe name lookups to the masses" https://daniel.haxx.se/blog/2018/10/19/dns-over-https-is-rfc-8484/
Voici un nouveau moyen d'envoyer des requêtes #DNS, #DoH (DNS over HTTPS). Requêtes et réponses sont encapsulées dans HTTP, plus exactement #HTTPS. Le but ? Il s'agit essentiellement de contourner la #censure, en fournissant un canal sécurisé avec un serveur supposé digne de confiance. Et le chiffrement sert également à préserver la vie privée du client.
DoH marque donc une nouvelle étape dans la transition vers un Internet « port 443 seulement ».
The video of the very amusing "Smartening a Residential Complex - The 2^5 Application!" talk about @openHAB in 32 homes is now up. https://media.ccc.de/v/ece-shd18-1009-smartening_a_residential_complex_the_2_5_application_
"WebPerl uses the power of WebAssembly and Emscripten to let you run Perl 5 in the browser!
If you ask me, it's a matter of alcohol. :)
@pfhllnts would it be thinkable to have an SNMP (partial?) agent on an ESP8266 (Arduino, C)? Or maybe something which sends SNMP traps? Any idea or experience?
Zone Poisoning and GDPR #dns https://static.ptbl.co/static/attachments/191637/1540197677.pdf?1540197677
Secure Home Gateway project https://static.ptbl.co/static/attachments/191639/1540197798.pdf?1540197798
I'm at the Smart Home Day , and have been listening to some Eclipse Smart Home-related talks.
Very good, a report by Christina and Anna, was a user report about how they automated the buildings at codecentric headquarters.
Excellent, was an integrator's report: George Erhan recounts in a very amusing way, how they installed 32 openHAB instances in 32 homes of a residential area. Most important takeaway from that: Don't Update!
"Once you have enough people each working in multiple accounts it becomes a waiting game until you’ll eventually get the dreaded “Your AWS account 666 is compromised.” email." https://www.unixdaemon.net/cloud/aws-support-and-leaked-credentials/
Where do you put extensive docs for an open-source project hosted on GitHub? https://lobste.rs/s/8xqq1e/where_do_you_put_extensive_docs_for_open
"For the first time in 15 years I’m considering switching back to a Windows laptop" https://techcrunch.com/2018/10/19/the-7-great-features-that-will-hopefully-return-to-the-macbook-pro/
Les générateurs de site Web statiques, et son choix de Pelican http://www.bortzmeyer.org/generateurs-web-statiques.html
The registration for curl up 2019 is open! https://github.com/curl/curl-up/wiki/2019#how-to-register - curl history, present and future plus lots of those internet protocol deep dives.
Small-scale fiddler, loves DNS, MQTT, plain text, and things which work, dreamed up OwnTracks. I (re-)toot in several languages. http://jpmens.net
Follow friends and discover new ones. Publish anything you want: links, pictures, text, video. This server is run by the main developers of the Mastodon project. Everyone is welcome as long as you follow our code of conduct!