[HN Gopher] Pi-hole 5.0
___________________________________________________________________
Pi-hole 5.0
Author : Iolaum
Score : 104 points
Date : 2020-05-10 21:32 UTC (1 hours ago)
(HTM) web link (pi-hole.net)
(TXT) w3m dump (pi-hole.net)
| popotamonga wrote:
| When i uninstalled it broke my linux dns, keeps getting changed
| to localhost automatically. And om not expert enough on linux to
| fix it.
| foob4r wrote:
| Woohoo been waiting for this for months.
|
| I host pihole on a home server in a docker container and spend 5
| mins a month just updating it. No other administration.
| Definitely use it to get rid of trackers and ads.
|
| (I should add that I also pay for about dozen
| publications/newspapers that I read frequently in lieu of not
| seeing ads)
| xref wrote:
| Is there a way to quickly disable/re-enable pihole for the
| network?
|
| With AdGuard DNS or uBlock Origin I still get into situations
| where occasionally they break a site completely and I have to
| temporarily disable the plugin (or switch to cell tower dns) to
| get the site working, so I'd want a quick way out of pi-holing
| traffic as well
| city41 wrote:
| You can navigate to the admin console (easily done on any
| machine on your network) and disable it for a certain amount of
| time very easily
|
| https://i.imgur.com/K6VgV2G.png
|
| Note this is from pihole 4.3, but I can't image 5 would remove
| this feature.
| kylegordon wrote:
| The Web UI has a Disable button, and also quick options for
| permanent, 10 seconds, 30 seconds, 5 minutes, custom, etc. I
| think there's also an API as well. I can toggle it via Alexa
| and Home-Assistant.
|
| It's a feature that's been around for 2 years or more
| iou wrote:
| Alternatively for MAX_lazyness and convenience I've been using
| https://nextdns.io, does all the same stuff and is the
| alternative to cloudflare in Firefox for DNS-over-Https (DOH)
| notkaiho wrote:
| Pi-Hole has made my home browsing experience so much better since
| setting it up. Minimal resource overhead, maximum results - and
| if you care about stats those are available too but I just turned
| all logging off.
|
| Now if it could just filter out YouTube ads...
| xienze wrote:
| > Now if it could just filter out YouTube ads...
|
| Ive heard that the problem is that the native YT apps come with
| a big list of IP addresses for the ad servers, instead of doing
| lookups.
| dahfizz wrote:
| If true, it would be pretty easy to grab those ip addresses
| from the binary and add them to a firewall.
|
| A firewall is a little more than what I would trust to a
| raspberry pie, though...
| disiplus wrote:
| > vanced.app
| j1elo wrote:
| They very recently moved to require an special additional app
| _just for installing_ their new .apks file (which is a file
| containing multiple .apk inside), called SAI.
|
| That would be fine by me, if it wasn't because SAI requires
| Android 5.0, while my Nvidia Tegra -like tablet (Xiaomi MiPad
| 1) is stuck on Android 4.4 :-(
|
| (no, Lineage and friends is not a good replacement, they all
| break the camera, and yet worse, suck battery like crazy)
| nobodyshere wrote:
| I'd rather recommend this one:
|
| https://newpipe.schabi.org/
|
| At least it is opensource and works great.
| j1elo wrote:
| I used NewPipe for a while and it was very nice, enjoyed
| how well it works. However I started wanting to see videos
| on my TV (Chromecast), and that's where the abilities of
| NewPipe fell short.
|
| They have an open issue [0] since a couple years ago, but
| so far it is not a feature yet.
|
| [0]: https://github.com/TeamNewPipe/NewPipe/issues/668
| disiplus wrote:
| it broke down for me after 10min of use. no amount of
| reinstall or cleaning cache helped.
| agumonkey wrote:
| it has frail feet but it does work more often than not
| tfehring wrote:
| AdGuard DNS works well for YouTube ads IME.
| https://adguard.com/en/adguard-dns/overview.html
| surround wrote:
| Pi-hole is very easy to set up, and it works so well you can
| basically forget about it from that point on. Blocking ads is
| nice, but it's also a huge boon for privacy. I run uBlock origin
| on all my browsers, but Pi-hole still blocks 30-50% of requests
| on my network. It's also really nice to be able to glance at the
| logs and get an idea of what's going on on your network, or if
| there's any unusual activity.
|
| I'm especially excited to see CNAME inspection. I was tired of
| trying to figure out what domains like
| "xuenl4v1szy8g.cloudfront.net" were doing.
| disiplus wrote:
| does anybody know how to properly secure the the DNS server from
| replay attacks with iptables.
|
| i have a pihone running on a cheap vps on internet, but i connect
| to it with a vpn and that's draining my smartphone battery. i
| want to be able to change only the dns settings and point to my
| pi-hole. but at that time the recommendation was to not run the
| dns part on the internet because it could be used for dns replay
| attacks. i found some iptables rules on the net at time but was
| not sure are they ok. i did not want the ip address blacklisted
| because i was running some other services on that server.
| ycombonator wrote:
| I host pihole on Digital Ocean. Updated DNS on all my home
| clients. Smooth and adfree
| nobodyshere wrote:
| I do it on a PoE powered raspberry pi. Minimal effort, zero
| maintenance, no fees other than the initial purchase.
| hbcondo714 wrote:
| Do you use a PoE switch for this?
| shmoogy wrote:
| Is there a way to protect it, or is there no security concern
| with this? I run a pi zero, but I've been using nextdns
| recently to compare.
| nobodyshere wrote:
| Protect it how exactly? You can create firewall rules on
| DigitalOcean and limit the IP addresses from which the DNS
| server is accessible.
| disiplus wrote:
| that works only if you have a static ip home (which you
| usually don't have) or on your smartphone (which you don't
| have)
|
| > https://www.calyptix.com/top-threats/3-common-dns-
| attacks-an...
| A4ET8a8uTh0 wrote:
| Per client blocking is clearly the biggest change. I am excited
| about this.
| barney54 wrote:
| What is the use case of per client blocking?
| beervirus wrote:
| Blocking Facebook stuff on every device except my wife's
| phone.
| A4ET8a8uTh0 wrote:
| I have several users and multiple devices in our household.
| FB is not allowed anywhere near my PC, but wife has to
| currently switch between piholed and not piholed wifi. It
| just allows for a much better control. Heavens know not
| everyone is like me.
| j1elo wrote:
| Server is down, right? Not for this case (which I assume is
| caused by the HN effect) but one downside of this kind of
| blockers (I also use uBlock in the browser) is that when
| something doesn't work well in a website, I'm never confident
| that it's because the site is broken and not because my blockers
| are breaking it :-)
|
| I know, you can just disable the blocker and try again, but doing
| so from my phone is not very convenient...
___________________________________________________________________
(page generated 2020-05-10 23:00 UTC)