I understand what you mean about public and thought better of it after I posted. What do you set it up on? A secondary PC in your home or what? Thanks.
I've considered getting my own if the public Pi Hole turns out to work well. I'm also not super worried about the privacy and security of the Public Pi Hole. I feel the odds of my site visits being scanned are lower if it's a private person instead of a massive corporation.
I have it running on a Raspberry Pi. They're cheap and use barely any power so can be left running 24/7 in most situations. I guess it depends on how much you trust the person hosting it. Pi-Hole comes with lots of nice logging and graphing functionality making it very easy to see a history of DNS requests a specific IP has made. If there's only a handful of people using the service you stand out way more than when using a service with thousands of requests per second. Regarding security, as it's a DNS server it would be pretty easy to redirect connection attempts to fake versions of a website in order to steal login credentials.
I don't use my computer for anything important. If someone wants to steal my Wilders account, that's fine by me
My own. Dynamic SSH tunnel to my rented VPS. Outbound traffic blocked for everything except for ssh connection so no leaks possible.
I use DNSCrypt on auto so hop around whatever is the fastest resolver. The common problem with the service sometimes not loading seems to be related to checking for a working connection. If you are not connected it fails. It can help to set the service to load delayed so it gives a bit more time.
Quad9 with DoT running on a pfSense router with pfblockerng. Sweet. Use VPN & their DNS when out and about on the phone.
Are you sure you configured the Security filter? You didn't use the Family or Adult filter? IPv4 address: 185.228.168.9 and 185.228.169.9 IPv6 address: 2a0d:2a00:1::2 and 2a0d:2a00:2::2 https://cleanbrowsing.org/
Family Filter Blocks access to all adult, pornographic and explicit sites. It also blocks proxy and VPN domains that are used to bypass the filters. Mixed content sites (like Reddit) are also blocked. Google, Bing and Youtube are set to the Safe Mode. Malicious and Phishing domains are blocked. IPv4 address: 185.228.168.168 and 185.228.169.168 IPv6 address: 2a0d:2a00:1:: and 2a0d:2a00:2:: https://cleanbrowsing.org/filters#family
Krusty thanks! I inadvertently entered the wrong IP. My eyes or bad (or am just getting old), lol. Cheers man!
He he. I know the feeling. All good mate. The Security filter shouldn't block too much, or at least it doesn't for me. Enjoy!
Cloudflare's 1.1.1.1 DNS Gets Passing Grade in Privacy Audit https://www.bleepingcomputer.com/ne...1111-dns-gets-passing-grade-in-privacy-audit/
Yes, it is. I had to apologize to their CEO on HN about that And more and more VPN services are doing the same. It's very cool
Came across this study on which DNS provider does better malware and phishing blocking: https://www.skadligkod.se/general-security/phishing/malicious-site-filters-on-dns-in-2020/ Quad9 came out on top with an impressive 92%+. However, only 24 links were used. The author says that these links were about 1-3 days old, so you could use this to infer how often the provider updates their internal lists. The other providers in the test included CleanBrowsing, AdguardDNS, OpenDNS and Cloudflare. Important to note that Adguard also covers ad blocking as well to an extent.
I've been using Quad9 for a while. I'm pleased with it so far. At least compared to anything else. It's fast and reliable and supports DoH.
