I really cannot get into the mentality of some people claiming GPL-ed software to be troublesome. They say those are troublesome when they try to copy-and-paste them into their own products, but then they also claim that they don't like copy-and-pasting and software should be proprietary to protect the "intellectual property".
DoH disabled by default in Firefox on OpenBSD: «While encrypting DNS might be a good thing, sending all DNS traffic to Cloudflare by default is not a good idea. Applications should respect OS-configured settings.» - https://redd.it/d3uall
Seriously, verify your systems after an update. Only continuous monitoring of security features will make sure you don't expose people to insecure systems over time.
This morning I had to notice that my traefik setup decided to downgrade its defaults to SSLv3 due to a bug in the go TLS library.
So yeah, if you run anything server-side that provides TLS and is build with go 1.12.x you might want to verify it.
fairground.moe is one server in the network