Vexz

@Vexz@kbin.social

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Vexz,

Gotta wait till augmented reality becomes a common thing like smartphones so you can use an adblocker software to hide ads to your eyes in public, haha.

Vexz,

On my device: Settings > Internet & Connectivity > VPN > Cogweel next to the VPN settings > There's the option

Vexz,

I don't have a Samsung but on my device:
Settings > Internet & Connectivity > VPN > Cogweel next to the VPN settings > There's the option

Vexz,

The first thing that pops up in my mind is your public IPv4. You see, in your home LAN every device uses the same public IPv4 to communicate in the internet. So if one device browses for something like an iPhone and you're being tracked then those ad brokers deliver iPhone ads to this public IPv4 and every device behind this public IPv4 will see those ads. Nobody on the internet knows whether behind this public IPv4 is a single device or a LAN with many devices.

Vexz,

Either they're okay with a switch and it's easy or they are not open for that and it's impossible to change their mind.

Pretty much nobody I know wants to switch to Signal or any other messaging app. So it's SMS communication with them because I definitely won't install WhatsApp.

Vexz,

Not even gonna name the source where you got that from? :P

Vexz,

But afaik it only works in the browser, not on mobile apps unless that changed in the last few months.

Vexz,

Imo only in terms of privacy. I tried it a few times over like two to three days but I always went back to Plex. Jellyfin is a nice piece of software though. I can imagine my switch will happen in a few years.

Time to ditch #duckduckgo (lemmy.world)

In the last couple of months I have noticed an increasing trend of supplying me search results that are completely unrelated to the current query and tie back to my location or previous searches. I can say this with a high degree of certainty this is without a doubt beyond the 100th instance this has happened....

Vexz, (edited )

Me too. I was so reluctant to pay for a search engine at first since there are good alternatives out there I don't have to pay for. But I just at least wanted to try the first 100 free searches and was blown away by how great it is. It has some unique features like prioritizing or blocking specific domains, lenses and custom bangs. I payed the $10 the same day for Pro tier and 5 days later (yesterday) I even upgraded to Ultimate tier with ChatGPT-4 (called Kagi Assistant). I really, really enjoy Kagi so far. Most probably it's gonna be my one and only search engine for the next years to come.

Vexz, (edited )

Yes, you can. You can block any domain you want to appear in your search results. Here's the documentation for this feature.

Vexz,

I have a Synology NAS so I use Hyper Backup and upload my backups in the Synology C2 Cloud. Of course all my files are encrypted first before they get uploaded.

Vexz,

Why would they want to stop? This is their fight against adblockers and on Chromium based browsers it's an effective way so of course they keep pushing. ;)

Vexz,

The question still remains because what upstream DNS server in Pi-hole will you use? You'll always need to use a DNS server on the internet unless you use hyperlocal.

Vexz, (edited )

You don't cut the middle man, you create the middle man with Unbound. And Unbound needs to ask other DNS servers on the internet to resolve DNS queries. Your local DNS server can't just magically know which IP is behind a domain like for example google.com. It needs to ask other DNS servers that know the answer. So unless you're not using hyperlocal you will always need a DNS server on the internet to browse the web.

Here's an explanation by Cloudflare.

Vexz,

tl;dr: Cut out Cloudfare’s recursive resolver (or anyone else’s) and run your own via PiHole and Unbound.

Tell me you didn't read the article without telling me you didn't read the article. Let me point out the relevant part for you:
"A recursive resolver (also known as a DNS recursor) is the first stop in a DNS query. The recursive resolver acts as a middleman between a client and a DNS nameserver. After receiving a DNS query from a web client, a recursive resolver will either respond with cached data, or send a request to a root nameserver, [...]"

See that last part with "or send a request to a root nameserver"? That is the DNS server on the internet your Unbound DNS server will ask if it doesn't have the answer cached for you already.

Umm, Unbound is on your machine. So you’re saying you are your own middle man lol…

Exactly! Since the Unbound DNS server is your server you created your middle man server yourself. "middle man" has a very negative taste but in this case it really isn't bad at all.

It asks the authoritative nameservers, which is who external DNS servers ask. By using Unbound, you are cutting out those external DNS servers, because you/Unbound is the DNS server. You are asking the authoritative name server directly instead of inserting someone else to ask on your behalf.

Okay, so you get it but you don't get it fully. Again: Your Unbound DNS server can't magically know which IPs are behind a domain name. So what does it do? It asks a DNS server on the internet because they know the answer. When you Unbound DNS server got the answer it then tells your computer.

Unbound (your machine) is asking the DNS nameserver.

YES! And where do you think is the DNS server Unbound asks if it doesn't know the answer because it's not cached yet? It's some server on the internet.

You’re saying you are your own middleman lol.

I said you create your own middle man. Unbound is your middle man in this case because you make it look up the IPs behind the domains and it tells your computer these IPs then.

Instead of:
<Client> --> asks --> <DNS server on the internet> --> answers --> <Client>
You do:
<Client> --> asks --> <Unbound DNS (the middle man)> --> asks --> <DNS server on the internet> --> answers --> <Unbound DNS (the middle man)> --> answers --> <Client>
Let me say it again: Your Unbound DNS server being the middle man isn't a bad thing so please don't think "middle man" is always a negative term.

I’m saying cut out Cloudfare’s recursive resolver and run your own via PiHole and Unbound.

I just linked Cloudflare's article about it because they explain it well. Doesn't mean one must use Cloudflare's DNS servers.

Did you read the article I linked?

Yes, I did. But I knew what a recursive resolver is before I checked the link because I'm a professional IT administrator and I know how DNS works. It's part of my job.

Vexz,

Looks like my answer wasn't saved, great...

Anyway, sorry for not reading all of that, but I'll make it short and stop discussing because I feel like this is leading nowhere.

Unless you're using hyperlocal and cover all TLDs and wanna browse the internet there's technically no way around but to use an online DNS server. So coming back to the privacy aspect of this topic the question is: Which one do you trust?

Vexz,

My thoughts exactly. Next is: "OMG did you know there's the all seeing eye on the dollar notes! That means you're being spied on wherever there is cash!!!!"
Stuff like this just makes me wanna roll my eyes.

Vexz,

True. I recommend a DNS based adblocker like Pi-hole and an extra adblocker like uBO in your browser. If you can't access a website you'll immediately know who is the culprit blocking the site you're trying to access.

Vexz,

Do you know any minimal Invidious UI you can run from a Podman/Docker container? Like just the frontend, so that I can use Firefox instead of that. I think having that as a base and adding the freetube features would be great.

Use your favorite search engine and you'll probably find something. Or self host a Piped instance. It's very similar to Invidious but imo even better.

Vexz,

I did that a while ago but always ran in timeouts for some search engines (varied from time to time). Also the order of search results is often completely fucked up. And sometimes I search for something and got something completely different. For example I searched for something like "open source software" and the search results were filled with porn lol.

Also what's bad about self hosting this in your home network is that your SearXNG instance does the searches from your home network of course. That means all the searches to all the selected search engines like Google, Bing etc. are made from your IP which is counterproductive when it's privacy you're trying to achieve.

Vexz,

Dunno. That would mean websites would know what filter lists inside an adblocker browser addon you use, which I can't imagine tbh. But I'd say it's a gamble. With more block lists you can achieve more privacy but maybe (if privacybro is right) fingerprinting you is easier. You decide what is the right choice to make here.

Vexz,

Depends on what is secure enough to you. For me that is secure enough but I know a ton of people out there who would say it's not secure enough for them. So in the end it's up to you. Think about the risks and make a decision.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • localhost
  • All magazines
    •
    Loading…
    Loading the web debug toolbar…
    Attempt #