What do my #infosec and privacy- and anonymity-focused #sysad nerds think about encrypted #DNS (over tls, over https, etc), and especially #quad9 as a provider?

For context, I was a privacy nerd in the 90s and then worked in infosec (deep packet inspection) for a dozen years, but that was like a decade ago. Today I know high level stuff but am hella rusty.

I've been reading up on DoH/DoT/quad9 today, and I like what I'm seeing. What's your take?

Using sshd ? Annoyed by brute-force attempts which do nothing but increase load and thus increasing energy consumption? Solution: http://www.fail2ban.org/ #sysad #sshd #fail2ban