Show more

NextCloudPi is a Nextcloud instance that is preinstalled and preconfigured, and includes a management interface with all the tools you need to self host your private data in a single package.

This is an official open source community project that aims at making it easier for everyone to have control over their own data.

ownyourbits.com/nextcloudpi/

For those who would like to know more about encrypted DNS solutions.

DOH! DNS over HTTPS explained — RIPE Labs

labs.ripe.net/Members/gih/doh-

@espectalll @ScottMortimer as far as I am aware most ISPs in the UK execute their parental controls/government mandated blocking at the DNS level. If those DNS queries are masked from them then the method by which they use for filtering is disabled.

DNS based parental controls work for the majority of the general public because they do not require the consumer to install anything and are pretty much click this button and its enabled on all your devices connected to this broadband connection instantly.

They are however quite dumb, I can change the DNS servers I use and domains that had been "blocked" by my ISP are now available. This makes ISPs sad because the DNS blocking approach is a simple, cheap way of toeing the line with what the government is imposing on them regardless of its ineffectiveness.

UK ISP group names Mozilla 'Internet Villain' for supporting 'DNS-over-HTTPS' | ZDNet

UK government and local ISPs are putting the pressure on browsers to drop plans to support DoH protocol.

zdnet.com/article/uk-isp-group

~Open Source Security Tool of the Day~

Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes testing for common SSL certificate verification issues, HTTPS and TLS/SSL library bugs, SSL and STARTTLS stripping issues, cleartext issues, and more.

github.com/google/nogotofail

Five reasons English speakers struggle to learn foreign languages

It's no secret that English speakers struggle to learn foreign languages but there are good reasons to explain their woes that can't just be put down to the fact that all young Europeans speak English. Linguistics expert Michelle Sheehan looks at five of them in this article from The Conversation.

thelocal.com/20190703/five-rea

When Web Application Firewalls go bad

Cloudflare outage caused by bad software deploy (updated)

Starting at 1342 UTC today we experienced a global outage across our network that resulted in visitors to Cloudflare-proxied domains being shown 502 errors (“Bad Gateway”). The cause of this outage was deployment of a single misconfigured rule within the Cloudflare Web Application Firewall (WAF)

blog.cloudflare.com/cloudflare

Thank you Mastodon for saving my sanity with a mute button.

At this stage, no matter what governments do, the horse is already out of the barn. Perfect Forward Secrecy is so wide-spread that it cannot be constrained any longer.

politico.com/story/2019/06/27/

NEW: U.S. political operative Paul Manafort received payments for consulting work in Ukraine through over a dozen shell companies thanks to veteran Cypriot lawyer Kypros Chrysostomides, known by some as “Dr. K.”

occrp.org/en/investigations/th

~Open Source Security Tool of the Day~

sysmon-config | A Sysmon configuration file for everybody to fork

github.com/SwiftOnSecurity/sys

Interesting tale of a man almost falling for a spear-phisihing attack that was utilizing the recent Firefox 0-day vuln.

robertheaton.com/2019/06/24/i-

I am happy with my new XMPP server installation and the TLS certificate results are what I am expecting.

xmpp.net/result.php?id=1458352

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.