Question PiHole Lists?

[Homerboy]

I just set up a PiHole on my network yesterday and it generally seems to be running ok (except stupid AT&T doesn't let you change your DNS so that's a pain in the butt. At least my Ubiquity AP allows for manual DNS)
However, it still seems on some pages that ads will load (like the big banner ad at the top of CNN.com. I'm trying to find the latest and greatest lists out there, but I can't seem to find a good (new) comprehensive list.
Any help or ideas?

 

[ViviTheMage]

And you can use the pihole lists as well.

Yup, exactly. Best of both worlds.

 

[mxnerd]

There are several dead lists provided by @ViviTheMage

https://hosts-file.net/ad_servers.txt
https://hosts-file.net/emd.txt
https://hosts-file.net/exp.txt
https://hosts-file.net/grm.txt
https://hosts-file.net/psh.txt
https://raw.githubusercontent.com/Kees1958/WS3_annual_most_used_survey_blocklist/master/w3tech_hostfile.txt
https://raw.githubusercontent.com/quidsup/notrack/master/malicious-sites.txt
https://raw.githubusercontent.com/quidsup/notrack/master/trackers.txt
https://www.squidblacklist.org/downloads/dg-ads.acl
https://www.squidblacklist.org/downloads/dg-malicious.acl

I removed them and sorted the lists

http://sysctl.org/cameleon/hosts
http://winhelp2002.mvps.org/hosts.txt
https://adaway.org/hosts.txt
https://bitbucket.org/ethanr/dns-blacklists/raw/8575c9f96e5b4a1308f2f12394abd86d0927a4a0/bad_lists/Mandiant_APT1_Report_Appendix_D.txt
https://gitlab.com/curben/urlhaus-filter/raw/master/urlhaus-filter-hosts.txt
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-malware.txt
https://hostfiles.frogeye.fr/firstparty-trackers-hosts.txt
https://hostfiles.frogeye.fr/multiparty-trackers-hosts.txt
https://mirror.cedia.org.ec/malwaredomains/immortal_domains.txt
https://mirror1.malwaredomains.com/files/justdomains
https://pgl.yoyo.org/adservers/serverlist.php?hostformat=hosts&showintro=0&mimetype=plaintext
https://phishing.army/download/phishing_army_blocklist_extended.txt
https://raw.githubusercontent.com/DandelionSprout/adfilt/master/Alternate versions Anti-Malware List/AntiMalwareHosts.txt
https://raw.githubusercontent.com/HorusTeknoloji/TR-PhishingList/master/url-lists.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/AmazonFireTV.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/SmartTV.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/android-tracking.txt
https://raw.githubusercontent.com/StevenBlack/hosts/master/data/KADhosts/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/data/UncheckyAds/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/data/add.2o7Net/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/data/add.Risk/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/data/add.Spam/hosts
https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
https://raw.githubusercontent.com/anudeepND/blacklist/master/adservers.txt
https://raw.githubusercontent.com/bigdargon/hostsVN/master/hosts
https://raw.githubusercontent.com/crazy-max/WindowsSpyBlocker/master/data/hosts/spy.txt
https://reddestdream.github.io/Projects/MinimalHosts/etc/MinimalHostsBlocker/minimalhosts
https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt
https://s3.amazonaws.com/lists.disconnect.me/simple_malvertising.txt
https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt
https://v.firebog.net/hosts/AdguardDNS.txt
https://v.firebog.net/hosts/Airelle-hrsk.txt
https://v.firebog.net/hosts/Airelle-trc.txt
https://v.firebog.net/hosts/Easylist.txt
https://v.firebog.net/hosts/Easyprivacy.txt
https://v.firebog.net/hosts/Prigent-Ads.txt
https://v.firebog.net/hosts/Prigent-Malware.txt
https://v.firebog.net/hosts/Prigent-Phishing.txt
https://v.firebog.net/hosts/Shalla-mal.txt
https://v.firebog.net/hosts/static/w3kbl.txt
https://www.github.developerdan.com/hosts/lists/ads-and-tracking-extended.txt
https://www.malwaredomainlist.com/hostslist/hosts.txt
https://zerodot1.gitlab.io/CoinBlockerLists/hosts_browser

 

[ViviTheMage]

Thanks mxnerd, I forgot when I got the bulk of them from, so it's possible some have been deprecated. One thing I am liking about the addon to pfsense - pfBlockerNG is that it shows which lists are deduped and are actually accessible still. It also shows up on the dashboard with the top category and group lists hits. Overall pfBlockerNG seems a bit ahead compared to pihole. Although, pihole is still the easiest and quickest to get implemented for sure.

I also set up DOTS TLS 1.3 look ups for all DNS queries with pfsense's unbound DNS server. Nifty that I can block everything on one device now. I just wish it would show ALL dns queries, so I could possibly block all the really chatty stuff and investigate more.

 

[ch33zw1z]

Good info guys, I'll keep other options in mind!

 

[bigi]

Update

My PiHole has been running exceptionally well. My whole network has been set up to use it.

 

[thigobr]

I am using an OpenWRT router and configured its DHCP to send the PiHole address as DNS instead of ATT... It works really well... I thought about just using OpenWRT to do everything but PiHole's interface is very user friendly so other people at my household can easily add exceptions or use the "quick stop" function when some web page isn't working as it should

 

[ch33zw1z]

Another fun little project my kid talked me into: When out and about, the VPN DNS service doesn't offer much in the way of filtering. But, you can configure custom DNS. So he talked me into creating an Amazon (AWS) account and creating an instance to run pihole in. According to the website, I can run up for 3.5 million seconds for free. Since 30 days is ~2.5 million seconds, I guess I can run it 24x7 for free. Works pretty good so far!

 

[Fanatical Meat]

Finally set up my pihole, I am using the dns routing per device because I want to test it for a few days before hitting everything also (mainly) I cannot disrupt my wife’s work from home stuff. I am afraid to make changes during the week to network/internet stuff.

Overall I am very happy with it. iPhone runs cooler, far fewer irritating type ads but still some ads which is good
Only problem I have is logging into the pihole dashboard, I keep getting invalid password warnings. I have even removed the password and still get prompted I used
(From memory)
sudo -a -p

 

[ch33zw1z]

^^ yep, sudo pinole -a -p will get change password prompt, leaving it.blank will make it blank. Did you happen to record what password it made during setup?

You can try updating pihe or just reinstalling it again, and choosing to lose old config and start.fresh

 

[Fanatical Meat]

^^ yep, sudo pinole -a -p will get change password prompt, leaving it.blank will make it blank. Did you happen to record what password it made during setup?

You can try updating pihe or just reinstalling it again, and choosing to lose old config and start.fresh

came back to report as of now it is working. I was pretty tired last night and must have screwed something up

 

[Fanatical Meat]

here It is

 

[VirtualLarry]

Well, Why is mine not working?

IF you're using Firefox, be sure that it hasn't enabled "Encrypyted DNS-over-HTTPS", which can be changed under the "Network settings", at the bottom of the "General" settings tab, in "Tools", "Options".

 

[sdifox]

Finally set up my pihole, I am using the dns routing per device because I want to test it for a few days before hitting everything also (mainly) I cannot disrupt my wife’s work from home stuff. I am afraid to make changes during the week to network/internet stuff.

Overall I am very happy with it. iPhone runs cooler, far fewer irritating type ads but still some ads which is good
Only problem I have is logging into the pihole dashboard, I keep getting invalid password warnings. I have even removed the password and still get prompted I used
(From memory)
sudo -a -p

Your password is 1,2,3,4,5

 

[Fanatical Meat]

Your password is 1,2,3,4,5

All those commas make it secure

 

[Fanatical Meat]

First minor problem. Google shopping tab results don’t load or at least several of them don’t load.
Not a deal breaker for me because in this case all I had to do was go to target and search.
This would be a deal breaker for my wife. I’ll probably just change the dns for each device.

 

[Homerboy]

First minor problem. Google shopping tab results don’t load or at least several of them don’t load.
Not a deal breaker for me because in this case all I had to do was go to target and search.
This would be a deal breaker for my wife. I’ll probably just change the dns for each device.
View attachment 37697

View attachment 37698

Yeap. Those top links are always google served ads. Not just in shopping but in an search results that results in "ads" as the first few results.
Took my wife a few tries to figure it out. I admit I still sometimes click on them by mistake.

It's a small price to pay IMO. I only use piHole on my main PC at home - and when I turn it off, the browsing websites is just unbearable with all the ads etc

 

[Fanatical Meat]

Yeap. Those top links are always google served ads. Not just in shopping but in an search results that results in "ads" as the first few results.
Took my wife a few tries to figure it out. I admit I still sometimes click on them by mistake.

It's a small price to pay IMO. I only use piHole on my main PC at home - and when I turn it off, the browsing websites is just unbearable with all the ads etc

Yeah, number one reason I became interested in running a PiHole was to be able read f-ing recipes again. Those sites have become so ad ridden with video, shopping lists, pop up ads it became close to impossible to READ THE DAMN RECIPE. My joke has become we used to use books and cards for recipes, then the web took over and we tossed them all, then ads took over and now we’re back to books and cards.

 

[Homerboy]

Yeah, number one reason I became interested in running a PiHole was to be able read f-ing recipes again. Those sites have become so ad ridden with video, shopping lists, pop up ads it became close to impossible to READ THE DAMN RECIPE. My joke has become we used to use books and cards for recipes, then the web took over and we tossed them all, then ads took over and now we’re back to books and cards.

Oh yeah - 100%. Recipe sites are INSANE.

 

[sdifox]

First minor problem. Google shopping tab results don’t load or at least several of them don’t load.
Not a deal breaker for me because in this case all I had to do was go to target and search.
This would be a deal breaker for my wife. I’ll probably just change the dns for each device.
View attachment 37697

View attachment 37698

Those are ads LoL.

 

[Homerboy]

First minor problem. Google shopping tab results don’t load or at least several of them don’t load.
Not a deal breaker for me because in this case all I had to do was go to target and search.
This would be a deal breaker for my wife. I’ll probably just change the dns for each device.
View attachment 37697

View attachment 37698

Also, don't get Google's WiFi (unless you're looking at mesh). A $100 Unibiquiti AP is just an amazing upgrade.

 

[Fanatical Meat]

Also, don't get Google's WiFi (unless you're looking at mesh). A $100 Unibiquiti AP is just an amazing upgrade.

already have a google WiFi, I’m pretty happy with how dummy proof it is.
Next pi project will involve either a outdoor game camera or a weather station. Either of which I will need better WiFi coverage outside with. Current one puck version gets coverage around 10 feet from the house becomes very unreliable past that point except on the front of the house, that range is ridiculous for whatever unknown reason.