I would like to add aome tips I use.
Firstly, I recommend you self host your own dns server. up-front benefits:
Extended-time dns records stay cached. What?
Pi-Hole refreshes the IP address of a domain name (website name) stored inside the cache afterwards, but for only three minutes at a time.
You can reasonably safely increase this by 10x or actually an hour at a time in your home network pi-hole system "cache" or simply storage area is what that means. So what?
Less outbound requests avg 1/40th a second response times, every 175 seconds is default in Pi-Hole.
With unbound, that result from asking for the website's numbered address can stay in cache for as long as you so choose, but if the time is several hours or even days, than this may prevent access to most if not all websites until a system pi-hole reboot or the next cache refresh interval.
You are probably thinking that it's very difficult to install, and configure but as I've done it just yesterday, last night actually, it's surprisingly simple.
Pi-hole has their own documentation on how to install it (doesn't need anything more than the example pi-hole example file copy amd pasted, and follow the simple instructions.
You WILL need to download the Top Level Domains list file with the instructions.
DO NOT do any of the optional steps unless you would enjoy doing so, completely skippable I know because I have an entire 40+ page thread abour how NOT to configure it. Only when I followed the instructions and didn't add extra steps until I understood it, would it work without issue on that fresh first try.
It's a very small program or group of components, and it avoids having to use your ISP domain name IP address resolver, or Google's 8.8.8.8 tracking everything you send them, or opendns (cisco), CloudFlare, Route53 (Amazon) or anyone else.
Speaking of ad blocking and script blocking, you ask for a solution that will work on all devices and web browsers,
A browsee addon called NoScript will block all scripts (but you can choose to always temporarily allow all TLD and no extras, probably still can't read a majority of horribly designed web pages without additional exceptions. It works in the following browsers:
There are a lot of google chromium clones including
o Microsoft Edge (MS does not want to maintain their own codebase for an alternative xhoice in web rendering / web standards.
o Vivaldi Features and design from Opera
o Brave Chromium based with ad-replacement and cryptocurrency additions
o Google Chromethis Built by an advertising business that operates Googlw Ad Services, and the DoubleClick network.
Do not use it please.
Chrome gets 60% of the web browser market. 98% of Google Chrome users do not know and do not understand or care to understand why, that they are being followed on the web. It's actually annoying and aggravating.
Even businesses now just install it which I think is a security oversight and privacy violation for everyone who uses.
o Mozilla Firefox, hanging on by a thread with a 6 or 7.0% market share. Linux distrobutions usually have this as default as it is, thankfully, (Mozilla actually wanted to close-source the browser, which would have ended their entire business and we certainly would not be talking about it today) atill open-source, and continues to push on with privacy features, regarding default tracker blocking and cookie identity separation with containers.
I know firefox will work on both android and ios and on non-mobile, and it's increased use will surely send a message to the G of today. They pulled their motto "Don't be Evil" in 2018 (started in 2,000) and some employees took them to court. The phrase has been changed to
"Don't do evil" in 2020.
|
For Android, there is a market place for opensource software F-droid
In there you can download rethinkdns.
I love the way you can basically block the app, just the ip address or both, of ANYTHING that connects on your android device--it's like a mixture of the software
WireShark mixed with the blocking of Pi-hole.
I have over 150 IP addresses blocked and at least 2/3 of those are the G services. By the time I block a few hundred more I don't think they'll have any left to block.
Also with this program you can set a custom dns server, instead of G's four eight servers, you can use a few others such as
Quad9 which you can guess the address
Lastly I thought of unbound, but I will mention that in the top.