[Solved] Domain- and/or Pattern-blocker

To complete the confusion, i include an overview of all (way to many i guess) the lists in the BLOCKER-section.

The Blocker Statistics in my Dashboard keep telling me that 0 items have been blocked!

Hello Rob,

If you set the Device to "Automatic" eBlocker choose the best match (Domain, Pattern).

If you set to "Domain" for this device eBlocker only Domainfilters are working, otherwise if you set to Pattern only Patternfilters do the job.

 🤩 Domainfilter works with DNS Nameresolution (redirects the Domain).

 🤩 Patternfilter works with HTTP/S and use the proxy squid (blocking matchin pattern).

Example for Domainfilter:

3393.com
3lift.com
777tracking.com

Here some examples for filterlists:

Tracker Lists
https://v.firebog.net/hosts/Easylist.txt
https://v.firebog.net/hosts/Easyprivacy.txt
https://gitlab.com/quidsup/notrack-blocklists/raw/master/notrack-blocklist.txt

https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/android-tracking.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/SmartTV.txt
https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/AmazonFireTV.txt

Malware & Phising Lists
https://phishing.army/download/phishing_army_blocklist_extended.txt
https://s3.amazonaws.com/lists.disconnect.me/simple_malvertising.txt
https://v.firebog.net/hosts/Prigent-Phishing.txt
https://v.firebog.net/hosts/Shalla-mal.txt

AD Domain Lists
https://v.firebog.net/hosts/AdguardDNS.txt
https://v.firebog.net/hosts/Airelle-trc.txt
https://www.squidblacklist.org/downloads/dg-ads.acl
https://v.firebog.net/hosts/Prigent-Ads.txt
https://v.firebog.net/hosts/Kowabit.txt

Best choose set to "Automatic" 👍 👍 👍 

Regards

PIO

Thank you PiO, you sure gave me some homework to do. I’ll dive into it!

Rob

@pio78

Hi Pio,

iam also at "Automatic".

Devices without https integration are using only the Domain Blocker
Devices with https integration are using only the Pattern Blocker
Because of this, i/we must set the Blocking list to both Domain Blocker and Pattern Blocker.

Regards,
Oliver

Posted by: @oliverrmeinebox-de
Because of this, i/we must set the Blocking list to both Domain Blocker and Pattern Blocker.

Does this mean I basically have to enter all list twice? That seems tedious! Is there anywhere I can see which Domains where blocked?

@robertocravallo No, there is no need to add domains to pattern lists - and it’s not recommended. That‘s simply lack of knowledge how the eBlocker technology works.

I‘m happy to explain. It‘ all about overblocking...

If eBlocker https is enabled for the device (which you unfortunately „gave up“ @robertocravallo, if I remember right) pattern matching is used to recognize trackers. So if you visit a domain gooddomain.com you can access all URLs beside the bad one‘s that contain trackers. I.e. only gooddomain.com/badtracker.php gets blocked.

If you now add the whole domain gooddomain.com to the pattern blocker, you can not access the good URLs on the domain anymore - resulting in overblocking. (Very typical for simple DNS based blockers btw. and the reason why we‘ve invented pattern blocking.)

Only in case eBlocker https is not enabled for a device, eBlocker’s DNS blocker will kick in. Then all domains in the domain blocker lists get blocked. We‘ve added this mode only to get basic protection for devices where the eBlocker cert can not be installed (i.e. SmartTV) or the user can not follow cert install instructions. 

At the end of the day, it makes no sense at all to pump as many lists you may find, into your eBlocker. It only makes sense to add to eBlockers list if you really know what you are doing. 

If you are not a tech geek with deeper knowledge about tracking tech in detail, it‘s a very good idea to lean back and rely on the curated lists we are providing.

To make a long story short: Regular user should not add individual blocking lists at all. Others hopefully know what they are doing...

THX!

Posted by: @random

Regular user should not add individual blocking lists at all. 

That would be me then... 😬 

THX