Hello, welcome to the Tuesday, March 2, 2021 edition of the Sandcent Storm Center's Stormcast. My name is Johannes Ulrich,

and I'm recording from Jacksonville, Florida. I'll also be notifying the winners of the February

Raspberry Pi Challenge within the next 24 hours.

So watch your email and respond so I'm able to ship them.

For March, I'll continue the same challenge as we had in February.

You either report an error that I made during the podcast or fill out the quick survey that we have on the podcast show notes page.

DNS over HTTP, DNS over TLS. These are two protocols that still gather a lot of interest.

And Rob today focused on the second one, DNS over TLS.

Not quite as popular, I think, as DNS over HTTP,

because first of all, it's relatively easy to block.

And secondly, it's not built into browsers as a DNS over

HTTP but on the other hand it's easy to install on for example a little router and

provide anonymize the DNS services for a particular network what eroded here is demonstrate some tools that help you find DNS over TLS endpoints

in your network, and then also how you test and query those endpoints.

There is a nice tool as part of NOT DNS, which is an alternative DNS server, KDick, that comes with

DNS over TLS build-in, so you don't need anything special, any other tools in order to probe

DNS over TLS server. And well, have you ever Googled for a question that you had, whether it's IT related or not?

I know I probably did that at least a dozen times just today.

And looks like the good loader malware, according to a write-up by Softus, is taking advantage of that.

Apparently, the group behind this malware is operating around 400 compromised servers

and using them for a good old Black Hat search engine optimization.

Now, in the past, this has often been used for a fairly simple, popular search

...