we live in hell
I don’t even understand the pitch? you have the disc playing, in your hands, your ownership, no buffering, no subscription required. and they’re saying…hey do you want a worse experience?
we live in hell
I don’t even understand the pitch? you have the disc playing, in your hands, your ownership, no buffering, no subscription required. and they’re saying…hey do you want a worse experience?
They started to wisen up and hard-coded dns requests to 8.8.8.8 to bypass dns ad blockers now. Heck, some apps like Netflix already do it for years now. If your router can transparently redirect all dns requests to your pi-hole, you should use that feature.
So they recognize that the owner of the product is trying to prevent them from collecting data, and actively try to circumvent the owner’s security measures? This shit should be illegal, and carry a huge fine. You paid for the device, and it’s connected to your network, which you control. I’m sick and tired of corporations thinking it’s totally okay to be straight-up spyware and adware. Some supposedly legitimate companies these days make old-school computer viruses look down right respectful.
There’s a misconception here. Unless you can control what code is running on it, you are not the owner.
This is what the FSF warned us about.
Not only that, I have the entire Roku domain blocked on my network, and even though there’s no reason for it, as evidenced by the fact that there’s no problem running it for a month, and it doesn’t happen to all TVs, depending when it was last handled, it breaks my Plex app every 30 days in such a way that it needs to be fully reinstalled, which requires unblocking Roku, allowing phone home of the prior month’s data. Old, but not obsolete, app versions should still work fine - have a kodi Plex app that hasn’t been updated in years and that works without issue. So this is absolutely an intentional choice to force users to at least cough up their viewing data, even if they can’t give you their ads. And they can collect a surprising amount of information through those apps.
Took me a couple months to figure out what was happening (by waiting 2 months and doing the reinstall on the same day for all of them and checking the next time one broke, then staggering them the next time) but I’m no longer using the apps and will probably just factory reset all three of them, leave them off the network entirely.
The amount of work they do as a company to make my private experience complete shit because I don’t want them invasively collecting my info and shoving ads down my throat… is absolutely disgusting.
Remember Bonzi Buddy? I bet lil’ purple monke sent less snoop data than big purple roku.
It’s the MOST blocked thing in Pi-Hole on my entire network!
or use the blocking feature of your firewall. Here’s Roku being persistent and ignoring my pihole. Firewalla for the win.
Firewalla’s are great. All the features of pfsense and then some, in a fine little hardware form factor.
Heads up if you have the purple though : they had a bad hardware batch that had a soldering flaw on the lan side nic that would eventually make your upload reduce to KB/s. I replaced far too many waps before I found a thread about it and realized it was the firewall.
Replacement was simple and free, but they should have been more proactive reaching out to purple buyers.
The countries listed there are really peculiar to me (I know that’s not the part of the image you were referring to).
Like obviously U.S. is up top because presumably you live there but either way lots of internet traffic goes in/out of the country even for those that don’t… but I wonder why Germany and France? Russia and China can be sort of assumed I guess a lot of malware spawns from there. Especially China imho even though Russia is on the hot seat rn and it’s common to think of the country when thinking of hackers they just don’t have China’s huge internet/tech infrastructure to send out as much… manure I guess overall, everywhere. Russia seems to try to target malware whereas China just spews it indiscriminately. Feel free to correct if I’m wrong I’m no security expert.
I use ControlD for DNS filtering and I don’t think I can view analytics like that by country? Wish I could though it seems really interesting now what my blocked connections would look like by country/region.
Easy enough to do with NAT unless it uses DNS over https. Then you have to block a lot more than just DNS.
Is DNS over https distinguishable from other https traffic?
In theory, no, but you can always block known DoH dns providers (both their ip address and their domain). It’s pain in the ass though.
List of known dns providers
I deny all DNS traffic except traffic going to my router IP so my pfBlocker will always work.
There’s always DNS over HTTPS. It’s really hard to nab that shit out if it’s going upstream to the same server that’s hosting the content.
That’s my next project now that I have my pihole set up. My basic ass router from my ISP does not support that though.
Side question: do you know of any openWRT supported routers in the $100-150 range with external antennas? Everything I’ve taken a look at is either an internal antenna, or like $400.
What do you mean with internal/external antenna? Does something like asus rt-ax53u ($85) counts as having external antennas? https://openwrt.org/toh/asus/rt-ax53u
Yeah. That’s perfect. Thanks!
I recall having similar issues with Chrome. Instead of checking in with the pihole, it just went ahead and bypassed it by using a different DNS.
goolag dns