[HN Gopher] Pi-hole 5.0 ___________________________________________________________________ Pi-hole 5.0 Author : Iolaum Score : 104 points Date : 2020-05-10 21:32 UTC (1 hours ago) (HTM) web link (pi-hole.net) (TXT) w3m dump (pi-hole.net) | popotamonga wrote: | When i uninstalled it broke my linux dns, keeps getting changed | to localhost automatically. And om not expert enough on linux to | fix it. | foob4r wrote: | Woohoo been waiting for this for months. | | I host pihole on a home server in a docker container and spend 5 | mins a month just updating it. No other administration. | Definitely use it to get rid of trackers and ads. | | (I should add that I also pay for about dozen | publications/newspapers that I read frequently in lieu of not | seeing ads) | xref wrote: | Is there a way to quickly disable/re-enable pihole for the | network? | | With AdGuard DNS or uBlock Origin I still get into situations | where occasionally they break a site completely and I have to | temporarily disable the plugin (or switch to cell tower dns) to | get the site working, so I'd want a quick way out of pi-holing | traffic as well | city41 wrote: | You can navigate to the admin console (easily done on any | machine on your network) and disable it for a certain amount of | time very easily | | https://i.imgur.com/K6VgV2G.png | | Note this is from pihole 4.3, but I can't image 5 would remove | this feature. | kylegordon wrote: | The Web UI has a Disable button, and also quick options for | permanent, 10 seconds, 30 seconds, 5 minutes, custom, etc. I | think there's also an API as well. I can toggle it via Alexa | and Home-Assistant. | | It's a feature that's been around for 2 years or more | iou wrote: | Alternatively for MAX_lazyness and convenience I've been using | https://nextdns.io, does all the same stuff and is the | alternative to cloudflare in Firefox for DNS-over-Https (DOH) | notkaiho wrote: | Pi-Hole has made my home browsing experience so much better since | setting it up. Minimal resource overhead, maximum results - and | if you care about stats those are available too but I just turned | all logging off. | | Now if it could just filter out YouTube ads... | xienze wrote: | > Now if it could just filter out YouTube ads... | | Ive heard that the problem is that the native YT apps come with | a big list of IP addresses for the ad servers, instead of doing | lookups. | dahfizz wrote: | If true, it would be pretty easy to grab those ip addresses | from the binary and add them to a firewall. | | A firewall is a little more than what I would trust to a | raspberry pie, though... | disiplus wrote: | > vanced.app | j1elo wrote: | They very recently moved to require an special additional app | _just for installing_ their new .apks file (which is a file | containing multiple .apk inside), called SAI. | | That would be fine by me, if it wasn't because SAI requires | Android 5.0, while my Nvidia Tegra -like tablet (Xiaomi MiPad | 1) is stuck on Android 4.4 :-( | | (no, Lineage and friends is not a good replacement, they all | break the camera, and yet worse, suck battery like crazy) | nobodyshere wrote: | I'd rather recommend this one: | | https://newpipe.schabi.org/ | | At least it is opensource and works great. | j1elo wrote: | I used NewPipe for a while and it was very nice, enjoyed | how well it works. However I started wanting to see videos | on my TV (Chromecast), and that's where the abilities of | NewPipe fell short. | | They have an open issue [0] since a couple years ago, but | so far it is not a feature yet. | | [0]: https://github.com/TeamNewPipe/NewPipe/issues/668 | disiplus wrote: | it broke down for me after 10min of use. no amount of | reinstall or cleaning cache helped. | agumonkey wrote: | it has frail feet but it does work more often than not | tfehring wrote: | AdGuard DNS works well for YouTube ads IME. | https://adguard.com/en/adguard-dns/overview.html | surround wrote: | Pi-hole is very easy to set up, and it works so well you can | basically forget about it from that point on. Blocking ads is | nice, but it's also a huge boon for privacy. I run uBlock origin | on all my browsers, but Pi-hole still blocks 30-50% of requests | on my network. It's also really nice to be able to glance at the | logs and get an idea of what's going on on your network, or if | there's any unusual activity. | | I'm especially excited to see CNAME inspection. I was tired of | trying to figure out what domains like | "xuenl4v1szy8g.cloudfront.net" were doing. | disiplus wrote: | does anybody know how to properly secure the the DNS server from | replay attacks with iptables. | | i have a pihone running on a cheap vps on internet, but i connect | to it with a vpn and that's draining my smartphone battery. i | want to be able to change only the dns settings and point to my | pi-hole. but at that time the recommendation was to not run the | dns part on the internet because it could be used for dns replay | attacks. i found some iptables rules on the net at time but was | not sure are they ok. i did not want the ip address blacklisted | because i was running some other services on that server. | ycombonator wrote: | I host pihole on Digital Ocean. Updated DNS on all my home | clients. Smooth and adfree | nobodyshere wrote: | I do it on a PoE powered raspberry pi. Minimal effort, zero | maintenance, no fees other than the initial purchase. | hbcondo714 wrote: | Do you use a PoE switch for this? | shmoogy wrote: | Is there a way to protect it, or is there no security concern | with this? I run a pi zero, but I've been using nextdns | recently to compare. | nobodyshere wrote: | Protect it how exactly? You can create firewall rules on | DigitalOcean and limit the IP addresses from which the DNS | server is accessible. | disiplus wrote: | that works only if you have a static ip home (which you | usually don't have) or on your smartphone (which you don't | have) | | > https://www.calyptix.com/top-threats/3-common-dns- | attacks-an... | A4ET8a8uTh0 wrote: | Per client blocking is clearly the biggest change. I am excited | about this. | barney54 wrote: | What is the use case of per client blocking? | beervirus wrote: | Blocking Facebook stuff on every device except my wife's | phone. | A4ET8a8uTh0 wrote: | I have several users and multiple devices in our household. | FB is not allowed anywhere near my PC, but wife has to | currently switch between piholed and not piholed wifi. It | just allows for a much better control. Heavens know not | everyone is like me. | j1elo wrote: | Server is down, right? Not for this case (which I assume is | caused by the HN effect) but one downside of this kind of | blockers (I also use uBlock in the browser) is that when | something doesn't work well in a website, I'm never confident | that it's because the site is broken and not because my blockers | are breaking it :-) | | I know, you can just disable the blocker and try again, but doing | so from my phone is not very convenient... ___________________________________________________________________ (page generated 2020-05-10 23:00 UTC)