this post was submitted on 31 Aug 2023
80 points (95.5% liked)

Privacy

32173 readers
763 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Hey everyone, I'm still pretty new to using my GrapheneOS phone and have been slowly transitioning to a more privacy oriented technology lineup than I previously did.

I searched for clients on Google and found "Total Adblock", "Adblock", and "Adblock Plus" but I'm not quite sure how to audit an adblocker for security flaws or malicious intent. I also would prefer to install apps through the F-Droid store and learn how to compile from source code on mobile (if that's possible on GrapheneOS or if that's even something desirable)

Thanks for any help! Been lurking a lot on Lemmy and have really enjoyed the energy in the community. Definitely has made learning Linux and the countless times I've had to fix my Arch system much more enjoyable. GrapheneOS has been quite stable too other than the phone having interfacing problems with my cellular provider's network...

all 50 comments
sorted by: hot top controversial new old
[–] [email protected] 27 points 1 year ago* (last edited 1 year ago) (4 children)

If I were you I would set your phone's DNS to dns.adguard.com.

You may want to double check that by searching it but adguard has a DNS server that will block the majority of ads from ever hitting your phone regardless of where you are, kind of like having a pi hole on your phone.

[–] [email protected] 3 points 1 year ago (2 children)

I have a question. If I set my Phone's DNS to that address, will it affect my internet speeds in any way? Slowing it or boosting it? I already have sucky internet and don't want my speed to be slower due to that private DNS.

[–] [email protected] 7 points 1 year ago (1 children)

No, it's not a VPN. Your traffic does not go through it. All using it does is change which server that your device asks for IP addresses for the websites you visit. When your device asks for the IP for an ad, Adguard gives you one that points back to your device and prevents the ad from being loaded. Otherwise it acts like any other DNS-Over-HTTPS server.

[–] [email protected] 3 points 1 year ago

Okay, got it. Thanks for the response, Friend.

[–] [email protected] 3 points 1 year ago

It may, you need to try it. Depending on where you are/server load etc. It may be better, worse, the same

[–] ProffessionalAmateur 2 points 1 year ago

Fantastic! Wasn't aware of this.. thank you

[–] [email protected] 2 points 1 year ago (1 children)
[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)
[–] [email protected] 1 points 1 year ago

It looks to me that's the one in the guide on the official website of AdGuard DNS.

[–] [email protected] 1 points 1 year ago (1 children)

What is the difference between setting the DNS and using the Adguard app?

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

I'm not 100% certain. I think the difference is the adguard app also adds in some in system protections in exchange for battery life because it's always running. I didn't much care for the app but the DNS service has been perfectly fine for my casual use.

[–] [email protected] 10 points 1 year ago

adaway is a classic hosts based ad blocker, usually have effect for in app ads. for ad in webpage, i suggest firefox with ubo installed

[–] [email protected] 10 points 1 year ago* (last edited 1 year ago) (2 children)

I'm on grapheneos and set my private dns to dns.adguard.com like the other guy suggested (also set it on my router too!)

I use Fennec (Firefox stable fork) from fdroid and it has the uBlock Origin extension, and I go hardcore and enable every single filter except the language filters lol. DarkReader extension also is super nice and is set to my auto enable on my system color setting.

Also I use noScript and go to the settings and enable "temporary allow top level domain scripts" and it allows a good amount of sites to work without having to manually allow extra stuff. There's still a lot that break, but much less breakage then blocking all js by default. I would skip noscript altogether if you don't want to manually enable js files and keep tweaking until the site works. It's really overkill for everyday browsing.

Using Mull browser (also on fdroid) too if you don't mind some breakage, it's Fennec but with arkenfox.js, so basically all the maximum privacy and anti-fingerprint resistance settings enabled. I don't really need that level of privacy, and Fennec + uBlock Origin is private enough to me to defeat all the trackers and it "just works" without ever tweaking anything on any website.

Bonus tip: try out Droid-ify app instead of fdroid. The fdroid app is super archaic and Droid-ify is an actual modern version with seamless updates for fdroid apps.

[–] [email protected] 3 points 1 year ago (1 children)

Is there a reason you recommend forks of Firefox rather than the official version with the same add-ons enabled? Firefox already has support for Ublock and will have full desktop add-on support soon.

[–] [email protected] 4 points 1 year ago* (last edited 1 year ago)

Has all the telemetry, analytics, and pocket crap removed, and some proprietary blob or something lol. I know if they ever add more spying stuff the future that it'll automatically be patched out in the fork I use. Besides that, it's the exact same experience. Even Firefox Sync works which I use.

On top of that, it's available on f-droid so it doesn't rely on Google Play at all, which is very important if you're trying to minimize Google stuff on your phone.

[–] [email protected] 1 points 1 year ago

Thank you for all the great suggestions! I've been slowly implementing a potpourri of the recommendations I've gotten across tech in my life so its been quite exhausting the past month trying to digest it all.

I love the DNS.adguard.com pihole! I started using it about 3 weeks ago and its made my mobile browsing experience so much better. It was perfect to see all those terrible ads and popups that just make it distracting and impossible to read vanish into smome. Not to mention redirects and videos I didn't want to play...

Just checked out Fennec and Droid-ify and is there a particular reason Droid-ify was written entirely in Kotlin? I only recall that Kotlin was named after the island near St. Petersburg, but that's it... I only started using Arch Linux about 3 months ago as my daily driver and used Windows for 18 years prior. Been hard to unlearn a lot of habits instilled from undergrad from my shitty Python and MATLAB courses + decades of Windows usage.

[–] [email protected] 8 points 1 year ago (1 children)
[–] [email protected] 2 points 1 year ago

or mullvad dns

[–] [email protected] 7 points 1 year ago

As others have said, DNS blocks are good. My favorite is https://rethinkdns.com/ which you can use by itself, or with their app. Using the app gives you many more options, and nice features like logging.

[–] [email protected] 7 points 1 year ago

NextDNS is pretty damned good

[–] Asudox 7 points 1 year ago* (last edited 1 year ago)

I searched for clients on Google

Before adblock, how about changing your search engine?

[–] [email protected] 6 points 1 year ago

Custom Nextdns. For the Browser, Mull with Ublock. Vanadium sucks, it may be good for security but has no privacy features whatsoever. What website works without Javascript? Bullshit. Noscript on Firefox is so much better.

[–] Brunbrun6766 5 points 1 year ago
[–] [email protected] 5 points 1 year ago (1 children)

As far as I remember adaway is the og adblock for android, it is available on f-droid and pretty much the only app that I used since ever, and one of the few reasons I still won't let go of rooted phones, https://adaway.org/

On top of that I would recommend you to run your own DNS server with unbound, add to that pi-hole and wireguard and you have your own pi-hole set-up on any device you want.: https://docs.pi-hole.net/guides/vpn/wireguard/overview/

[–] [email protected] 1 points 1 year ago

i can recommend adaway with root aswell. for a lot of ads on websites you still need uBlock tho

[–] [email protected] 5 points 1 year ago* (last edited 1 year ago) (1 children)

For the browser, use Firefox (Fennec or Mull in F-Droid) with Ublock Origin. For anything else, honestly if the app has ads you should avoid using it anyway.

[–] [email protected] 1 points 1 year ago (1 children)

Any advice on adjusting to a search engine like Searx or enhancing how to use DuckDuckGo since Fennec comes with it?

Is there a gospel-like resource on Search Engines and using particular query delimiters? Just been tough reading some of these documentation pages with legion jargon words

[–] [email protected] 2 points 1 year ago

if you want to configure Fennec to use Searx, set the search engine URL to https://searx.example.org/search?q=%s

Other than that, I only have one tip for non-Google search engines - always set the correct region.

[–] INeedMana 4 points 1 year ago (1 children)

Adguard DNS is nice but sometimes you need to let some app pass. I've switched to blokada. Sadly they've pulled the app from f-droid but version 5 is available on github

[–] Breezy 2 points 1 year ago

I still use blokada 5, but more and more ads keep getting through. Its nothing like it was a couple years ago. Id love to find something better.

[–] [email protected] 4 points 1 year ago
[–] DeadNinja 3 points 1 year ago* (last edited 1 year ago)

I have tried Blokada and RethinkDNS already (I guess DNS66 is no longer maintained - I may be wrong) but finally zeroed in on PersonalDNSFilter.

I don't see it being mentioned much - but IMHO it is much more lightweight and customizable than the other two.

I point to Cloudflare DoT for DNS, and use the OISD blocklist, and that's all I need for device-level blocking ( I already use Firefox + uBO in my Android device so I'm good on that front).

https://www.f-droid.org/packages/dnsfilter.android/

[–] [email protected] 3 points 1 year ago

DNS based exist such as DNS.adguard.com . But I use a good VPN with their own blocklists. No need for extra stuff.

[–] badgrandpa 3 points 1 year ago

Do not track app in iOS; Rethink DNS in Android

[–] Asudox 3 points 1 year ago

RethinkDNS.

[–] WhoRoger 2 points 1 year ago

For browsing, best use a browser with adblocking included, as that's faster than using external apps. Browser can eliminate the calls right at source, while an external app can only intercept them.

Mull (Firefox fork) with uBlock Origin is the gold standard, or Cromite (ex Bromite) for Chromium fork.

[–] [email protected] 2 points 1 year ago (1 children)
[–] [email protected] 3 points 1 year ago* (last edited 1 year ago)

Blokada works fine, but download the .apk from its Homepage, the version in the Play Store is a, by Google, "decaffeinated" light version. Google hate adblockers.

[–] Decentralizr 2 points 1 year ago

Check decloudus.com

[–] [email protected] 1 points 1 year ago
[–] [email protected] 1 points 1 year ago

Does anyone use Block This!. I've been using it for years but I hardly see it come up in these posts as a suggestion.

[–] [email protected] 1 points 1 year ago

I used adguard with nextdns

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

Is there a reason nobody recommends dns66 of fdroid? I uses adaway for many years with root. But the rootfree version never really worked for me. Dns66 replaced it.

[–] [email protected] 4 points 1 year ago (1 children)

It's old and outdated. Look when the latest version has been released

[–] [email protected] 1 points 1 year ago

Crazy! Still works better than the newest version of adaway, though.

[–] TooMuchVanced 0 points 1 year ago

Set custom dns to Control D (p2.freedns.controld.com).