Doing some prep for next week and I'm kicking myself for not noticing what was going on here for the longest time:

Find the largest prime factor of 3^15 + 3^11 + 3^6 + 1

#mathpuzzle. #doh

Hamad International Airport - Doha, Qatar

https://en.wikipedia.org/wiki/Hamad_International_Airport
https://www.openstreetmap.org/#map=13/25.273056/51.608056

#OTHH #DOH #Doha #Qatar #airport #aviation #avgeeks #GIS

Razvan Dimescu is building something very interesting with #Numa, a portable #DNS resolver in a single #Rust binary that supports oblivious DNS over HTTPS: https://numa.rs/blog/posts/odoh-anonymous-dns-without-an-account.html

#ODoH changes the trust model. The resolver should not see who is asking, and the relay should not see what is being asked. That separation is a meaningful architectural improvement over #DoH.

As seen in @andrew_campling’s weekly "DNS in the News": https://419.consulting/encrypted-dns/f/dns-in-the-news-18th-may-2026

DoH на роутере OpenWRT, Mikrotik и Asus: пошаговая инструкция от того, кто сам хостит резолвер

Если коротко, DNS это последний открытый протокол в вашей сети, по которому провайдер (и любой джентльмен в кафе на open WiFi) видит, куда вы ходите. HTTPS закрыли, SNI потихоньку прячут через ECH, а DNS как был в плейне на 53-м порту, так в большинстве домашних сетей и остался. DoH (DNS over HTTPS) это лечит, но не на устройстве, а на роутере, чтобы один раз настроил и забыл про все смартфоны, тостеры и умные лампочки. Я три месяца пилю свой DNS-резолвер с фильтрацией и за это время насмотрелся на чужие конфиги достаточно, чтобы написать инструкцию без воды. Разберу OpenWRT, Mikrotik (RouterOS 7+) и Asus с Merlin, плюс подводные камни, в которые я лично наступил.

https://habr.com/ru/articles/1035612/

#DoH #OpenWRT #Mikrotik #RouterOS #AsuswrtMerlin #dnsmasq #httpsdnsproxy #DNSoverHTTPS #роутер #privacy

Still thinking about #DNS privacy. I have a validating resolver that does DNS-over-HTTP #DoH and DNS-over-TLS #DoT. So that solves the client-to-server security.

But the server has to get the data from somewhere and that's generally via recursion starting at the root servers. Those servers don't widely use DoT, so the queries tend to be in the clear which means my ISP can see them.

I could shuttle the queries to Cloudflare or Quad9 using DoT, but then I'm just changing my exposure from my ISP (who I generally trust) to someone who promises I can trust them (spoiler alert: I don't).

To address that gap, I built tord. This is a VPP-integrated Tor service that I adjusted dnsd to optionally use as a forwarder. So I can set 9.9.9.9 as my target forwarder and have dnsd use the tord circuit to pass the requests so that my IP address remains private. The forwarded requests themselves are DoT, so the Tor exit node can't read them.

It works pretty well! There's a slightly noticeable delay when visiting a non-cached name for the first time, but that quickly smooths out.

Doha Returns! ✈️

Kam Air is proud to resume flights between Kabul and Doha, reconnecting travelers to new opportunities, seamless journeys, and worldwide connections.

#KamAir #DohaFlights #KabulToDoha #FlightResumption #FlyKamAir #DOH #TravelUpdate.

Source: Kam Air (@KamairRQ)
[ https://x.com/KamairRQ/status/2056272704572121273 ]

#Afghanistan #Kabul