Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Wouldn't a hosts file or a local DNS[1] or VPN[2][3] with hosts file support solve that without having to switch software ?

I'm using Netguard on Android devices I don't want to root and it's been good. Plus it does per-app firewalling as well.

[1]: https://www.zenz-solutions.de

[2]: https://netguard.me

[3]: https://blokada.org



I'm using pihole and blocking Google DNS and yet my tv was showing that awful banner. I think google serves the ads using some not-only-ads domain.


It could be that you haven't added the domain they're served from onto your blacklist.

A weird side story: I had a situation where an app on my Roku TV would crash if it failed to serve an add from a blocked domain (there were several but they mostly pointed to google ad domains). I actually _had_ to allow ads from the domains they called.


Presumably Google devices will just resolve DNS queries through a tunnel, if you block 8.8.8.8


https://getintra.org/ is the only DNS client I know of that doesn't leak DNS connections over TCP, most other DNS apps (including the 3 mentioned here) do. Blokada is marked with anti-features tag by f-droid for telemetry: https://gitlab.com/fdroid/fdroiddata/-/merge_requests/8536 (Note: Intra, though open-source, has telemetry in it too).

Disclaimer: I co-develop a Intra fork.


AFAIK personalDNSfilter lets your route the DNS however you want. Not that it matters too much to me. I'm not trying to have airtight privacy, I just don't want to be buggered by trash. I'm interested to see your fork, though.


It is up here: https://github.com/celzero/rethink-app and discussed on hn a while back: https://news.ycombinator.com/item?id=26133661




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: