Yeah, I have a Docker Compose example. I left out the SSL certificate generation out of it because users can piggy-back on Nginx Proxy Manager ou Caddy to handle it for them.
BlackEco
joined 1 year ago
I personally went for PiHole + DNS-over-TLS / DNS-over-HTTPS in order to use PiHole on my phone while outside my home. It doesn't require to constantly have a VPN active, which saves a bit of battery life. Its only drawbacks are that it requires a domain name for DNS-over-HTTPS, a way to route traffic to your server and additional setup and software (Dnsproxy and Certbot)
If you use a third-party's DNS server (such as Cloudflare, Quad9 or Google) as your upstream DNS server, you only have to update PiHole.
If you have set up your own upstream DNS server using a DNS resolver like unbound or Bind9, update it as well as your PiHole.
I struggle to find if it uses DNSSEC or even a change log. If it does, contact the maintainer and disable DNSSEC (if you can) until a fix is released.
They maintain their own resolver, so they have to patch it if not done already.
It's the latter. Unless you run your own DNS resolver, most people are safe
I'm not familiar with off-the-shelf DNS filtering on mobile, but since running a DNS resolver on-device would be impractical, I think they must be using a DNS server that they maintain. Which means that unless I'm wrong, the vulnerability lies on their end, you should be fine.
Exactly, I don't get the "Mastodon as a poor man's RSS agregator" trend
I'm more disappointed by their decision to not consider Microsoft's Edge and Bing as core platforms, even though the former is being pushed way too hard in Windows and the later is used as part of other search engines' indexes (ie. DuckDuckGo, Kagi, Qwant)
I got the full-screen splash screen depicted on the second screenshot a couple of weeks ago, I screamed "No!" thinking Microsoft upgraded me to W11 without my consent. My partner thought my computer was broken 😂
If I'm getting this right, you're planning on displaying some websites in a WebView in which you inject JS to modify the UI / add features?
Well, you totally can, I often do that on the desktop using Greasemonkey. Just be prepared for lost time whenever one of the websites introduce a breaking change.