[UPDATE] The best blocking lists for the Pi-Hole + Alternative DNS servers 2019

blacklisting
#1

2019-02-21T06:00:00Z

I share the blocklist that I currently use is a lite but effective option

Block List based on hblock for linux

https://raw.githubusercontent.com/hectorm/hmirror/master/data/adaway.org/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/adblock-nocoin-list/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/adguard-simplified/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/anudeepnd-adservers/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/disconnect.me-ad/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/disconnect.me-malvertising/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/disconnect.me-malware/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/disconnect.me-tracking/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/easylist/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/easyprivacy/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/eth-phishing-detect/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/fademind-add.2o7net/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/fademind-add.dead/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/fademind-add.risk/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/fademind-add.spam/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/kadhosts/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/malwaredomainlist.com/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/malwaredomains.com-immortaldomains/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/malwaredomains.com-justdomains/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/matomo.org-spammers/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/mitchellkrogza-badd-boyz-hosts/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/pgl.yoyo.org/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/ransomwaretracker.abuse.ch/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/someonewhocares.org/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/spam404.com/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/stevenblack/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/winhelp2002.mvps.org/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/zerodot1-coinblockerlists-browser/list.txt 	
https://raw.githubusercontent.com/hectorm/hmirror/master/data/zeustracker.abuse.ch/list.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/Audio-fingerprint-pages/master/AudioFp.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/Canvas-fingerprinting-pages/master/Canvas.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/WebRTC-tracking/master/WebRTC.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/Anti-Corp/hosts/NSABlocklist.txt 	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt 	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-malware.txt 	
https://www.stopforumspam.com/downloads/toxic_domains_whole.txt

The Whitelist

https://raw.githubusercontent.com/raghavdua1995/DNSlock-PiHole-whitelist/master/whitelist.list

Recommended Alternative DNS IPv4 Servers 2019

Provider Primary DNS Server Secondary DNS Server
CenturyLink 209.244.0.3 209.244.0.4
Verisign 64.6.64.6 64.6.65.6
GreenTeamDNS 81.218.119.11 209.88.198.133
SafeDNS 195.46.39.39 195.46.39.40
OpenNIC 198.206.14.241 172.98.193.42
SmartViper 208.76.50.50 208.76.51.51
Dyn 216.146.35.35 216.146.36.36
FreeDNS 45.33.97.5 37.235.1.177
Alternate DNS 198.101.242.72 23.253.163.53
Yandex.DNS 77.88.8.8 77.88.8.1
UncensoredDNS 91.239.100.100 89.233.43.71
Hurricane Electric 74.82.42.42
puntCAT 109.69.8.51
Neustar 156.154.70.1 156.154.71.1
Fourth Estate 45.77.165.194
CleanBrowsing 185.228.168.9 185.228.169.9
AdGuard 176.103.130.130 176.103.130.131
Tenta 99.192.182.100 99.192.182.101
FDN 80.67.169.12 80.67.169.40


2019-01-01T06:00:00Z

Based on tests, these are the best block lists for our PI-Hole

My current configuration

I’m using Pi-hole Version v4.1.1 FTL Version v4.1.2

Block List

I focus more on Ads & Privacy, Tracking and Telemetry; but it includes lists Phishing, Ransomware, Coinminer

https://dbl.oisd.nl/ 	
https://phishing.army/download/phishing_army_blocklist_extended.txt 	
https://tspprs.com/dl/crypto 	
https://tspprs.com/dl/tracking 	
https://tspprs.com/dl/spotify 	
https://raw.githubusercontent.com/CHEF-KOCH/Audio-fingerprint-pages/master/AudioFp.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/Canvas-fingerprinting-pages/master/Canvas.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/WebRTC-tracking/master/WebRTC.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/HOSTS/Game.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/NSABlocklist/master/HOSTS 	
https://raw.githubusercontent.com/deathbybandaid/piholeparser/master/Subscribable-Lists/ParsedBlacklists/AakList.txt 	
https://raw.githubusercontent.com/deathbybandaid/piholeparser/master/Subscribable-Lists/ParsedBlacklists/Prebake-Obtrusive.txt 	
https://jasonhill.co.uk/pfsense/ytadblock.txt

Norton DNS is shutting down on November 15th, 2018

Recommended Alternative DNS Servers

Provider Primary DNS Server Secondary DNS Server
CenturyLink 209.244.0.3 209.244.0.4
Verisign 64.6.64.6 64.6.65.6
GreenTeamDNS 81.218.119.11 209.88.198.133
SafeDNS 195.46.39.39 195.46.39.40
OpenNIC 198.206.14.241 172.98.193.42
SmartViper 208.76.50.50 208.76.51.51
Dyn 216.146.35.35 216.146.36.36
FreeDNS 45.33.97.5 37.235.1.177
Alternate DNS 198.101.242.72 23.253.163.53
Yandex.DNS 77.88.8.8 77.88.8.1
UncensoredDNS 91.239.100.100 89.233.43.71
Hurricane Electric 74.82.42.42
puntCAT 109.69.8.51
Neustar 156.154.70.1 156.154.71.1
Fourth Estate 45.77.165.194
CleanBrowsing 185.228.168.9 185.228.169.9
AdGuard 176.103.130.130 176.103.130.131

The whitelist I use

https://dbl.oisd.nl/whitelist2.txt


[UPDATE] 2018-12-10T06:00:00Z

We know very well that the blocking lists that are by default are good; I share my lists that I have added and block even more the internet garbage, without affecting the navigation

My current configuration

I’m using Pi-hole Version v4.1 FTL Version v4.1

Block List

I focus more on Tracking and Telemetry; but it includes lists Phishing, Ransomware, Coinminer, NSA Blocking, Ads & Privacy

https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts 	
https://mirror1.malwaredomains.com/files/justdomains 	
http://sysctl.org/cameleon/hosts 	
https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist 	
https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt 	
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt 	
https://hosts-file.net/ad_servers.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/Audio-fingerprint-pages/master/AudioFp.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/BarbBlock-filter-list/master/HOSTS.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/Canvas-fingerprinting-pages/master/Canvas.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/Canvas-Font-Fingerprinting-pages/master/Canvas.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/WebRTC-tracking/master/WebRTC.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/HOSTS/Ads-tracker.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/HOSTS/coinminer.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/HOSTS/Malware.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/filters/nsablocklist.txt 	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/uMatrix/CK's-uMatrix-FilterList.txt 	
http://phishing.mailscanner.info/phishing.bad.sites.conf 	
https://ransomwaretracker.abuse.ch/downloads/RW_DOMBL.txt 	
https://ransomwaretracker.abuse.ch/downloads/CW_C2_DOMBL.txt 	
https://ransomwaretracker.abuse.ch/downloads/LY_C2_DOMBL.txt 	
https://ransomwaretracker.abuse.ch/downloads/TC_C2_DOMBL.txt 	
https://ransomwaretracker.abuse.ch/downloads/TL_C2_DOMBL.txt 	
 https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt 	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-malware.txt 	
https://zerodot1.gitlab.io/CoinBlockerLists/list.txt 	
https://zerodot1.gitlab.io/CoinBlockerLists/list_browser.txt 	
https://zerodot1.gitlab.io/CoinBlockerLists/list_optional.txt 	
https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt 	
https://raw.githubusercontent.com/w13d/adblockListABP-PiHole/master/Spotify.txt 	
https://smokingwheels.github.io/Pi-hole/allhosts

DNS servers to block ads, crawlers and phishing

AdGuard DNS
176.103.130.130
176.103.130.131

WhiteList

@sjhgvr https://dbl.oisd.nl/whitelist2.txt


[UPDATE] November 13, 2018

If you have followed this post before, you have noticed that I have tried several block lists for our Pi-Hole.

And personally these are the best lists I’ve found on the web

https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts	
https://mirror1.malwaredomains.com/files/justdomains	
http://sysctl.org/cameleon/hosts	
https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist	
https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt	
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt	
https://hosts-file.net/ad_servers.txt	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-malware.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list_browser.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list_optional.txt	
https://ransomwaretracker.abuse.ch/downloads/RW_DOMBL.txt	
https://ransomwaretracker.abuse.ch/downloads/CW_C2_DOMBL.txt	
https://ransomwaretracker.abuse.ch/downloads/LY_C2_DOMBL.txt	
https://ransomwaretracker.abuse.ch/downloads/TC_C2_DOMBL.txt	
https://ransomwaretracker.abuse.ch/downloads/TL_C2_DOMBL.txt	
https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt	
https://smokingwheels.github.io/Pi-hole/allhosts	
https://tspprs.com/dl/spotify	
https://gist.githubusercontent.com/BBcan177/4a8bf37c131be4803cb2/raw/343ff780e15205b4dd0de37c86af34cfb26b2fbe/MS-2	
https://gist.githubusercontent.com/BBcan177/b6df57cef74e28d90acf1eec93d62d3b/raw/f0996cf5248657ada2adb396f3636be8716b99eb/MS-4

Sources
pi-hole default List
smokingwheels block list
block list project
filterlist compatible with pi-hole
Whitelisting Suggestions for Pi-Hole
anudeepND’s curated whitelist

Some time ago AdGuard DNS stopped being beta and it made me interesting to include them in the Pi-Hole configuration.

As mentioned on his website

AdGuard DNS is an alternative solution for ad blocking, privacy protection, and parental control. Easy to set up and free to use, it provides a necessary minimum of best protection against online ads, trackers, and phishing, no matter what platform and device you use

I will be using this combination, having what results are obtained. On the one hand Pi-Hole and on the other a DNS specialized in blocking Ads.

I also found these other DNS that also blocks unwanted ads

Alternate DNS offers an affordable, global Domain Name System (DNS) resolution service, that you can use to block unwanted ads.



I would like to know the comments of users that use this combination


November 6, 2018

Using new block lists, based on Block List Project
With care there are very aggressive lists

https://tspprs.com/dl/ads	
https://tspprs.com/dl/crypto	
https://tspprs.com/dl/gambling	
https://tspprs.com/dl/malware	
https://tspprs.com/dl/ransomware	
https://tspprs.com/dl/spam	
https://tspprs.com/dl/tracking	
https://tspprs.com/dl/abuse	
https://tspprs.com/dl/spotify


October 16, 2018

[UPDATE] I do not know the reasons why CHEFKOCH has disappeared his GitHub profile his blockeo lists are no longer available

https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts	
https://mirror1.malwaredomains.com/files/justdomains	
http://sysctl.org/cameleon/hosts	
https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist	 
https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt	 
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt	
https://hosts-file.net/ad_servers.txt	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-malware.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list_browser.txt	
https://raw.githubusercontent.com/r-a-y/mobile-hosts/master/AdguardMobileAds.txt	
https://raw.githubusercontent.com/r-a-y/mobile-hosts/master/AdguardMobileSpyware.txt	 
https://raw.githubusercontent.com/jerryn70/GoodbyeAds/master/Hosts/GoodbyeAds.txt	
https://raw.githubusercontent.com/EnergizedProtection/block/master/ultimate/formats/hosts.txt	
https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt

Whitelisting Suggestions for Pi-Hole
anudeepND’s curated whitelist


October 13, 2018

Block lists by default

https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts	
https://mirror1.malwaredomains.com/files/justdomains	
https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist	
https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt	
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt


Add these block lists
(ads, annoyances, crypto, malware, phishing, privacy)

https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt	
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-malware.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list.txt	
https://zerodot1.gitlab.io/CoinBlockerLists/list_browser.txt	
https://raw.githubusercontent.com/CHEF-KOCH/Audio-fingerprint-pages/master/AudioFp.txt	
https://raw.githubusercontent.com/CHEF-KOCH/Canvas-fingerprinting-pages/master/Canvas.txt	
https://raw.githubusercontent.com/CHEF-KOCH/WebRTC-tracking/master/WebRTC.txt	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/HOSTS/CK's-Ad-Tracker-HOSTS-FilterList.txt	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/HOSTS/CK's-Spotify-HOSTS-FilterList.txt	
https://raw.githubusercontent.com/CHEF-KOCH/CKs-FilterList/master/Corporations/NSABlocklist/CK's-NSABlocklist-FilterList.txt	
https://raw.githubusercontent.com/mitchellkrogza/Badd-Boyz-Hosts/master/hosts	
https://raw.githubusercontent.com/r-a-y/mobile-hosts/master/AdguardMobileAds.txt	
https://raw.githubusercontent.com/r-a-y/mobile-hosts/master/AdguardMobileSpyware.txt	
https://raw.githubusercontent.com/EnergizedProtection/block/master/ultimate/formats/hosts.txt	
https://raw.githubusercontent.com/mitchellkrogza/The-Big-List-of-Hacked-Malware-Web-Sites/master/hacked-domains.list
3 Likes

Pi-Hole works everywhere except Android Phones
#2

The current default (V4) block lists include your five plus these two, for a total of about 130K domains:

http://sysctl.org/cameleon/hosts
https://hosts-file.net/ad_servers.txt

2 Likes

#16

See https://www.reddit.com/r/pihole/comments/9p9d3p/chef_koch_github_account_deleted/ and https://www.reddit.com/r/uBlockOrigin/comments/9opkel/chefkoch/e7x35q5/ for the story on CHEF-KOCH.

0 Likes

#18

many Thanks for update blocklist. i am going to try this :slight_smile:

0 Likes

#19

November update list blocked all my androidTV (google accounts, youtube, etc) + IPTV lists. big issues.

0 Likes

#20

@kobiak
If you are reading everything, after adding these lists you must use the white list of anudeppNS´s whitelist to avoid false positive blockages.
In the 100 Pi-hole that you configure you do not have problems with youtube, neither with google, nor with IPTV, re-read

0 Likes

#21

What made you think I did not add some hosts to whitelist? I had to search for more google/facebook hosts to make them working again. and whitelist my IPTV provider, which is completely unexpected.

0 Likes

#22

Howdy!
I see you mentioned my whitelist2 (https://dbl.oisd.nl/whitelist2.txt)
However, since the title of this topic reads “…the best blocking lists…” I’m curious to find out what you think about my blocklist; https://dbl.oisd.nl

1 Like

#23

As I already said on reddit:

On this page, you can select a set of lists, depending on your willingness to be available for whitelisting.
Personally, I use the none-crossed lists + pihole defaults + the list referred to on this discourse page.
No major problems with this combination.

0 Likes

#24

@sjhgvr
I am using your block list and it really is very good, I just edited this post. Thank you

1 Like

#25

@jpgpi250

Of the lists he mentions, he only uses the Phishing Army I have had several false positives with the lists The Big Blocklist Collection

1 Like

#26

It all depends on your surfing habits. I don’t do social media, so that’s the first problem I will never have. I live in Belgium, so a lot of sites in the lists are never used. I haven’t found a list, specificly for belgium or by extension dutch language users.

If you’re not happy with the none-crossed lists, maybe you want to try the ticked lists. You can get it here or simply select it on the page that allows you to choose

0 Likes

#27

Many thanks for this. Is it advisable to add all of them?

I did and it took ages to update. Just wondering if I need them all.

Thanks again for a great job. Saving us all from the pain of doing it ourselves! :slight_smile:

1 Like

#28

Appreciate your time and sharing the blocklist!

0 Likes

#29

I’m maintaining this host file for a while now, feedbacks are welcome:
Raw link: https://raw.githubusercontent.com/anudeepND/blacklist/master/adservers.txt

Project homepage: https://github.com/anudeepND/blacklist

For people who want to block Facebook completely:
https://raw.githubusercontent.com/anudeepND/blacklist/master/facebook.txt
(Instagram and WhatsApp are not blocked)

0 Likes

#30

I use on a Mikrotik this list:


Which combines ~30+ lists already.
But Mikrotik suffers from memory / cpu and I just found out about Pi-Hole!

Can I use this list (I already have a shell script changing the list to another format)
or you use it already ?

0 Likes

#31

The Mikrotik does not suffer, you are using domains and you should be using IP-adresses with RouterOS.

You can use the domain and hosts files and Pi-hole is designed to use those.

0 Likes

#32

In case, I’ve cleaned up the list, to a Domains only format, so you shouldn’t have any worries with Pi-hole not really catching the domains the blacklist. (Despite what says msatter on that)

0 Likes

#33

Hi sjhgvr
Do you have your whitelist without porno?

0 Likes

#34

The only reason I posted the whitelists is to let people know how my list is created.
I never intended the whitelists to be used individually by other people.

Edit: I put some text in the top of the whitelists explaining that now, you are not the first person commenting on the whitelists :wink:
Edit2: removed the links completely… gave too many headackes

So no, and no my list does not block porn.

If you do want to block porn I suggest you try these blocklists;
https://raw.githubusercontent.com/chadmayfield/my-pihole-blocklists/master/lists/pi_blocklist_porn_all.list
https://tspprs.com/dl/porn
https://raw.githubusercontent.com/EnergizedProtection/block/master/porn/formats/hosts https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/porn/hosts https://raw.githubusercontent.com/mhxion/pornaway/master/hosts/porn_sites.txt https://raw.githubusercontent.com/Sinfonietta/hostfiles/master/pornography-hosts

0 Likes