nitrohorse Ⓐ @andreas@nitro.horse

Looks like AdGuard will soon be taking on NextDNS with a new managed DNS service:

https://adguard-dns.com/

More about it here: https://adguard.com/en/blog/reimagining-adguard-dns.html

#Privacy

Added new DNS over TLS profiles for Apple devices to https://encrypted-dns.party.

- BlahDNS: https://blahdns.com/
- AdGuard: https://adguard.com/en/adguard-dns/overview.html

#Privacy #Apple

Add to the list this open-source adblock test site:

https://d3ward.github.io/toolz/adblock.html

Tests against this list of domains: https://github.com/d3ward/toolz/blob/master/src/d3host.txt

#Privacy

Wrote a Python script that uses doggo under the hood for seeing how effective resolver's filtering is against a list of domains.

https://gitlab.com/nitrohorse/bulk-dns-lookup

Some past related discussions about DNS filtering:
- https://nitro.horse/@andreas/105563163002171270
- https://nitro.horse/@andreas/105643795099996189
- https://nitro.horse/@andreas/104977798421472568

#Privacy #Security

New #Pihole update is out:

https://pi-hole.net/2021/09/11/pi-hole-ftl-v5-9-web-v5-6-and-core-v5-4-released

#Privacy

Quad9 DNS now has a site for validating if it's enabled or not.

https://on.quad9.net/

https://nitter.snopyta.org/Quad9DNS/status/1436410719583485959

#Privacy

Here’s a way (on iOS 14) of combining a WireGuard VPN with a separate encrypted DNS resolver: install a DNS profile (https://encrypted-dns.party) or app (DNSecure, NextDNS, iVerify) and then remove the DNS server(s) in your WireGuard profile.

https://libredd.it/r/nextdns/comments/lzfbpw/mullvadnextdns_making_them_work_together/gq3pam8/

#Privacy

Interesting, AdGuard is coming out with “Virtual Cards.” Sounds similar to Privacy.com.

https://adguard.com/en/promo/virtual-cards.html

#Privacy

Nice, Passepartout now supports using a separate, encrypted DNS resolver with a VPN connection. Using a resolver like NextDNS with a VPN just became a bit easier on iOS.

https://libredd.it/r/nextdns/comments/lyiwkp/ios_nextdns_and_protonvpn_working_like_a_charm/

https://passepartoutvpn.app

#Privacy

Looks like PrivateStorage is finally launching later this year.

"PrivateStorage began as a joint venture between Least Authority and Private Internet Access. Together, we facilitated user testing as we investigated improvements to increase the usability of the application. At the end of 2020, the two companies mutually agreed to change their relationship and PrivateStorage is now 100% owned by Least Authority."

https://nitter.nixnet.services/PvtStorage/status/1366437389095288834

https://privatestorage.io/about-us/

#Privacy

“[Mullvad’s] public DNS service (currently in beta) offers DNS over HTTPS (DoH) and DNS over TLS (DoT), with QNAME minimization and basic ad blocking. It has been audited by the security experts at Assured.”

https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/

#Privacy

My current collection of domain-based filterlists for Pi-hole, ~4M unique. Excessive? Maybe, but I don't mind 😅

https://gitlab.com/-/snippets/2083166

#Privacy

nice, I can now get RSS feeds for these email-only newsletters using https://github.com/leafac/kill-the-newsletter.com.

- This Week in Security: this.weekinsecurity.com

- The Wiretap: https://www.forbes.com/newsletter/thewiretap

#Privacy

Quad9 is moving to Switzerland:

“The Swiss government produced findings of law that Quad9 is exempt from both law enforcement and intelligence data-collection and retention requirements, as well as KYC.”

- https://quad9.net/news/blog/quad9-public-domain-name-service-moves-to-switzerland-for-maximum-internet-privacy-protection
- Discussion: https://teddit.net/r/privacytoolsIO/comments/llqd7h/quad9_move_to_switzerland

#Privacy

Blocklist for ScamClub domains:

- https://gitlab.com/-/snippets/2078119

More info: https://www.zdnet.com/article/malvertiser-abused-webkit-zero-day-to-redirect-ios-macos-users-to-shady-sites/

#Privacy

Help users in Iran reconnect to Signal

“We’ve added support in Signal for a simple TLS proxy that is easy to set up, can be used to bypass the network block, and will securely route traffic to the Signal service.”

https://signal.org/blog/help-iran-reconnect/

#Privacy

Interesting new open-source iOS app, ZudVPN. Deploy a personal IKEv2 VPN with Pi-hole to a VPS *from* the app.

- https://www.zudvpn.com
- https://github.com/zudvpn/ZudVPN

#Privacy

Added to encrypted-dns.party for Apple devices:

- Faelix Privacy DoH: https://faelix.net/ref/dns/#privacy-dns
- Free Radio Munich DoH: https://ffmuc.net/wiki/doku.php?id=knb:dohdot

And now looks like there are signed profiles directly from https://dnsforge.de and https://get.yepdns.com.

#Privacy #Apple

FYI Mozilla / Firefox shares user data with Google, Leanplum, and Adjust [1] by default except on Klar [2] [3]. Learn how to opt-out here [4]. Also doesn't hurt to search for "telemetry" in `about:config` (not available on Firefox iOS) and toggle the entries to `false`.

[1] https://support.mozilla.org/en-US/products/privacy-and-security/no-surprises
[2] https://support.mozilla.org/en-US/kb/send-usage-data-firefox-mobile-browsers#w_why-do-you-enable-data-collection-by-default
[3] https://en.wikipedia.org/wiki/Firefox_Focus#Firefox_Klar
[4] https://support.mozilla.org/en-US/kb/send-usage-data-firefox-mobile-browsers#w_how-do-i-turn-off-data-collection-and-reporting

#Privacy

Helpful filterlist for uBlock Origin, "Fuck Fuckadblock," a successor to reek's "Anti-Adblock Killer list."

https://bogachenko.github.io/fuckfuckadblock/

#Privacy