. Skip to main content

(ˈpiːtə(r)), n, Dutch Computer geek, Father of 3 boys, Living together with @Chrizzzz. Working as a security consultant at @Atos, CISSP certified, Opinions are my own.

srcr.nl

twitter.com/srcr

instagram.com/srcr/

reddit.com/u/srcr/

paypal.me/srcr

keybase.io/srcr

xmpp:peter@srcr.nl

My @UbisoftUplay password was "2e0eTG180rCdigFh" but because you cannot paste it I changed it to "Ubisoft8" /cc @ubisoftsupport

DNS-over-HTTPS in the Pi-hole

1 min read

On the Raspberry pi install the dnss package

apt install dnss

Edit the settings to make it listsn on port 5053, normally it listens on 53

vi /etc/systemd/system/sockets.target.wants/dnss.socket

# Sockets for dnss.
#
# This lets dnss run unprivileged.
# We typically want one UDP and one TCP socket.

[Socket]
ListenDatagram=5053
ListenStream=5053

[Install]
WantedBy=sockets.target

And restart the service, because the pi-hole is running starting probably failed right after installation, port 53 is in use

systemctl restart dnss.socket

In the Pi-hole admin web interface under settings find the tab DNS and adjust the upstream DNS Server to the dnss installation

Pi-Hole - Upstream DNS Servers

And we're good to go. dnss uses by default dns.google.com.

 

 

Attending: Taking Security From Mediocre to Mighty With The MITRE ATT&CK Framework on Brighttalk - https://www.isc2.org/News-and-Events/Webinars/EMEA-Webinars?commid=360733&utm_campaign=Twitter&a...

Good riddance, GandCrab! If you still have files encrypted with GandCrab download the decryptor here https://labs.bitdefender.com/2019/06/good-riddance-gandcrab-were-still-fixing-the-mess-you-left-behi... or via https://www.nomoreransom.org

Listening to my daily Podcast list: "welcome to the MONDAY may 3rd 2019 edition of the SANS Stormcast" by @johullrich 😂

"Je kunt je bestelling direct ophalen bij een van de 3.500 oplaad- en ophaalautomaten in Nederland." - Mag ik het huis uit om digitale informatie op te halen. Dit is toch totaal kansloos. /cc @OVchipkaart

Kom ik net tot de ontdekking dat zoon lief de OpenDNS FamilyShield DNS instellingen omzeilt met de Tor Browser. Dat was niet de bedoeling 🤓

Nice writeup by @GossiTheDog, I watched this unfold this afternoon, seeing 215 ETH siphoned off via various Ethereum wallets. https://doublepulsar.com/hijack-of-amazons-internet-domain-service-used-to-reroute-web-traffic-for-t...

Vanmorgen in dichte 🌫 naar werk gereden. Zeker 20 auto's gezien met alleen dagrijverlichting. Mensen wees toch zichtbaar. /cc @POL_DeMarne

CPE Webcasts and Podcasts

1 min read

Since I'm a certified CISSP I need to reach my yearly CPE goal. For this I watch and listen to various web- and podcast. At the moment this is what is on my diet.

Stormcast, Daily Information Security Podcast - Stormcasts are daily 5-10 minute information security threat updates from the SANS Internet Storm Center.

Digital Shadows ShadowTalk - Digital Shadows monitors and manages an organization’s digital risk, providing relevant threat intelligence across the widest range of data sources within the open, deep, and dark web to protect their brand, and reputation.

Troy Hunt's Weekly update - Troy Hunt is the owner of Have I been pwned? (HIBP), blogger, Microsoft regional director and MVP and speaks at security events and give security training.

Paul’s Security Weekly - Weekly security roundup by the security weekly team discussing the security high- and lowlights.

FireEye State of The Hack - Weekly (?) show by FireEye with your update of the various APT and FIN groups.

Hi @UbisoftSupport, concerning the disabling of pasting my password into the iOS app, I want to point you to the following site https://www.ncsc.gov.uk/blog-post/let-them-paste-passwords

Dear @SophosSupport and @FSecure for your endpoint protection products do you set the required registry key to patch ?

Inside

1 min read

  

Can't resist putting these on my site, much better attempt than my picture below.
These pictures are created by @paul_pearce

Filmpje gehuurt bij @Pathe -thuis. Moet je €10,- minimaal storten voor de huur van €3,99 of met @PayPal maar dan weer een pre-approved, vinger in mijn portemonnee houden. Laatste maar gedaan en de pre-approver er weer afgesloopt, ook niet makkelijk bij @PayPal. Nog steeds een stuk makkelijker, maar ja mag niet.

Listening to @troyhunt's Weekly update 66 and 67 and created a at https://srcr.nl/security.txt not that it makes much sense for my mini-site but there it is.

Mirai botnet attackers plead guilty for roles in 2016 internet cyberattack http://www.zdnet.com/article/justice-dept-indicts-mirai-botnet-attackers/

Nice article @xme, I created my own (derived) script and already had a small success with it. - https://isc.sans.edu/forums/diary/Tracking+Newly+Registered+Domains/23127/

Any BIND guru's? Why do the @OpenDNS server work in nslookup from CLI but not as forwarders in my bind.conf?