Privacy

31853 readers

125 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

111

Pi-Hole vs AdGuard vs NextDNS (monero.town)

submitted 1 year ago by chevy9294@monero.town to c/privacy@lemmy.ml

36 comments fedilink hide all child comments

I use Pi-Hole and works great. I've heard about AdGuard and seems the same thing as PiHole, but you have to install an app/extension. Everyone in this community recommend NextDNS. Whats the difference between them?

you are viewing a single comment's thread
view the rest of the comments

[+] blkpws@lemmy.ml -2 points 1 year ago* (last edited 1 year ago) (2 children)

[deleted]

[–] tuhriel@infosec.pub 1 points 1 year ago (1 children)

It can't bypass my network DNS if only my DNS server is allowed to send out via port 53.

It's really fun to see how some devices are completely panicking. (I only have some chromecast music devices which do not need any internet) Anyway, I do hate that there are manufacturers who hardcode a dns into MY devices.

For the time I'm outside my network I do have a VPN which allows me to acces my pi-hole from outside (I never felt that the speed or latency is especially low)

There are even routers which allow you to re-route specific ports to specific devices. So, even if the device wants 8.8.8.8 the firewall would reroute it to my dns server

If you want a privacy friendly option that works from in/and outside your network without all the hassle above I can also recommend proton VPN which also procides tracker and ad blocking.

[–] Vexz@kbin.social 1 points 1 year ago (1 children)

… any app can bypass easily your DHCP DNS provided…

In my network it can only do that if the app has a hardcoded encrypted DNS server because I use NAT rules to force all unencrypted DNS to be processed by my OPNsense (which uses NextDNS as upstream DNS servers). And I highly doubt many apps even have a hardcoded DNS server anyway (no matter if unencrypted or encrypted).

and as I said, I don’t install any weird app on my phone, I just use it as a phone, to communicate, chat and to download podcasts to listen on night.

That's your personal use case but not everyone elses. I do much more with my phone. For example browsing. And I think most people do it too. Anyway, as long as you use mobile internet even your OS on your phone could spy on you with tracker domains. Most people don't use a custom ROM so you're just one of few people who this doesn't apply to.

While you just win at your local home network… xD

Wrong. I use NextDNS so I have it everywhere. ;)

[+] blkpws@lemmy.ml 0 points 1 year ago* (last edited 1 year ago) (1 children)

[deleted]

[–] Vexz@kbin.social 2 points 1 year ago (1 children)

and I was talking about Pi-Hole

Well, you said "you" so I thought you were talking about me since you replied to my comment.

Firefox and Telegram for example has built-in DNS if I’m not wrong. (you can disable it easily)

Right. I don't know about Telegram but in Firefoxes case I think it's disabled by default. I specifically checked that on my Firefox so it won't bypass my OPNsense.

We are sharing our use cases. And my context was “I don’t understand why people even talks about Pi-Hole”

You don't see it, do you? First you talk about your use case but then you talk about other people. So not your use case anymore. In their use case a Pi-hole, AdGuard Home, NextDNS or whatever else maybe makes sense and isn't a bad choice.

EDIT: Also, I think using your phone for other things is wrong, they aren’t really designed for that, they aren’t that secure as a PC can be.

Erm... what?? Smartphones are designed for many different things. Browsing the internet is just one of many things it's made for. It's called "smartphone" for a reason.