Hacker News new | past | comments | ask | show | jobs | submit login

Using the blacklist is simpler but it uses a two second TTL (bit looks like that can be changed in the 01-pihole.conf file, though).

I'd rather it return NXDOMAIN, though. That's what I had to do to block DNS-over-HTTPS for Firefox.

FWIW, I just tested my Adguard Home by adding trace.svc.ui.com to the filter, and I think it does return NXDOMAIN by default.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact