Just a quickie from one of our @DomainTools researchers today that I know @cR0w will enjoy.
Malware in DNS - specifically, malware seen being assembled from DNS TXT records.
Not a "zomg new thing!" so much as a neat example in the wild.
#BGP #routage Hier, Cloudflare a cessé d'annoncer son préfixe 1.1.1.0/24 (pour une raison inconnue). Les nombreuses annonces « pirates » de ce préfixe ont alors été davantage visibles, amenant certains, apparemment à tort, à croire qu'elles étaient la cause de la panne du résolveur #DNS 1.1.1.1.
https://mastodon.gougere.fr/@bgp/114856050719978352
Car, oui, il y a encore des réseaux (Tata, par exemple) qui annoncent ce préfixe, qui ne leur appartient pourtant pas.
Cloudflare's DNS is down for me. Drove me crazy. One computer, which didn't have Cloudflare because it was connected to VPN, was working fine and another one, nada. Changed DNS and all is good.
Anyone else? #Cloudflare #DNS
Haben die #DoT #DNS Server von #FFMUC gerade bzw. seit einigen Tagen Probleme?
// @freifunkMUC
@socketwench ah right - so where I left mDNS I was working out how to write nftables rules that would force any outbound traffic back to localhost to the systemd-resolved stub, which I could THEN enforce prioritizing mDNS responses, but also mDNS isn't kindof a closed and done thing like DNS is, it can just kinda, hang open for a but waiting for replies to the broadcast, and slowing everything down.
...yea I didn't get as far as investigating mDNS caching before this smelled awful
It's such a great *idea* though
@namedbird @drscriptt personally, I think #CPE / #Router manufacturers should've standardized upon *.router.local (i.e. fritzbox.router.local) since .local has been reserved for such purposeS... per #IETF via #IANA & #ICANN...
*.local.domain.example to make it work.In fact most corporate users don't even enroll #FQDN|s on their network (#Universities do based off my observation!)…
@drscriptt granted, we all want 203.0.113.1¹ to have #SSL / #TLS (even if it's just @letsencrypt ) work than not work or have no #encryption.
I just think that this will reward previously standards-violating behaviours when i.e. Xavier Sample Solutions don't get nudged to use i.e. api.solutions.example² but can just use their IP addresses.
@drscriptt Naive question: WHEN does the average #Internet #user ever open up a webpage with an #IP address instead of a #domain or even #FQDN?
The Idea if !SSL / #TLD for #IPaddresses makes me feel like Jeff Goldblum!
Der #Windows 10 PC von meiner Mutter hat das #Problem nur ca. 50% aller #DNS Auflösungen hinzubekommen.
Dabei ist es egal welche Anwendung die Anfrage stellt.
Egal ob Windows selbst, ein Browser oder "nslookup" in der cmd.
Egal welchen DNS Server ich einstelle, die FritzBox per DHCP, per Hand oder ein alternativer interner oder externer DNS Server.
Der Systemcheck via dism.exe findet keine Fehler.
Was ist da los?!
Ich bin komplett ratlos.
Ideen?
Upgrade auf Win11 ist eine Option?
Are you interested in building a (personal) website? Maybe you thought about it but you are not sure where to start?
Check out my post about „how to build a website“ and find yourself hosting a static site built by Hugo and hosted on GitHub for free within an afternoon!
https://rawomb.at/posts/build_a_website/
(Some programming experience is recommended)
P.S. Thank you for mentioning Hugo in your podcasts, @mkennedy
#PiHole #DNS #Filter blocks #Discord email verification - what the heck, man!?!
What else do they use clickDOTdiscordDOTcom for?
edit: well, technically that'd be on ME (not on PiHole); i've chosen the filter lists. I mightn't've chosen wisely enough. Over-blocking is totally a thing to be aware of! 
edit2: sometimes, other people know more than me - i'll un-whitelist this subdomain - it didn't benefit me
this #PerfekBlue thing is pretty wild:
and you know i get super excited when #DNS is involved:
> "Establishing a command-and-control (C2) channel over DNS allowed us to maintain a covert, persistent link with the vehicle, enabling full remote control. By compromising an independent communication CPU, we could interface directly with the CAN bus, which governs critical body elements, including mirrors, wipers, door locks, and even the steering."
https://thehackernews.com/2025/07/perfektblue-bluetooth-vulnerabilities.html
#DNS question... which is a better service?
Something fun to peruse over the weekend...we've started a daily dose of the top 500 #DNS domains seen on the Quad9 recursive resolver on #GitHub.
We're excited, are you? https://github.com/Quad9DNS/quad9-domains-top500
Still #privacy preserving and shared with y'all to improve the #security and #integrity of Internet.
Enjoy #infosec!
Freitag: Basketball-Profi als Cyberkrimineller? Alterskontrolle bei Bluesky
Profisportler unter Ransomware-Verdacht + Bluesky prüft Alter britischer Nutzer + Bestechungsvorwürfe wegen Spyware + Probleme mit Outlook + Datenschutz-Podcast
