The ads come from an ad network where there is very little visibility into what’s going to be displayed in your app. And bad people also keep managing to get their ads published even though the ad network doesn’t allow them
And it all ties into the whole targeted advertising, where they also make sure very few people get the bad ad, and tries to target people they think may be more susceptible to these kinds of tactics. Depending on the amount of interactivity allowed, the ad can even display two different things if it deems you too savvy to fall for it.
It’s basically unescapable unless you only use apps without ads, or pay for the ad-free versions.
The whole advertising industry is sketchy, more news at 10.
Pi-hole blocks ads served by these networks just fine. Never seen an ad in Boost for Lemmy or for Reddit, though I tend to use Jerboa now that I’ve gotten used to it while I was waiting for Boost for Lemmy to release.
DNS based adblocking like Pihole or Adguard limits you to receiving advertising hosted by the app provider (youtube for example) which is usually better curated than third party advertising networks and less commonly found at all.
Maybe in comming years, but I’ve never encountered an ad served explicitly through DoH/DoT. It’s certainly possible, just not actually in use yet.
You can also setup DoH front and back ends for pihole so traffic entering and leaving it is encrypted. When/if it becomes necessary I’ll probably look into https packet inspection using custom Root certs to force clients to use my local DoH services and block other traffic, or look into inspecting the SNI to apply blocking there; but again its just not needed yet and may not be for a long time. We’ll see. I’m sure the pihole/Adguard teams are also investigating solutions.
Hey, could you elaborate or send some lecture? I have the upstream quad9 DoH address in adguard. It’s supposed to better encrypt my traffic right? Never saw any ads or strange DNS requests.
Never heard about ads being inject though DoH or DoT, or did I misunderstood your comment?
Theoretically an app could use a custom DoH endpoint to retrieve ads instead of the standard dns provided by the system. As this uses purely https without a preceding dns request, pihole/adguard would fail to block it; but it’s just not something currently employed.
Yep, also the ads don’t get initialized at all if the user buys the ad-free version (going to top all in the Lemmy Boost community should bring up the post about it). It’s relatively cheap and the dev is very active with bugs and requests. The dev is developing for the Fediverse and I’m happy to support that (as well as devs for Sync, Connect, Lemmy, etc.)
I like Boost and paid for ad-Free, but a lot of other clients should work for your needs. While they might not be privacy focussed, many are open source so you can check what is going on.
My preference goes
Boost (not FOSS, one time payment to remove ads)
Connect (not FOSS, ad free)
Eternity (FOSS & ad free)
I uninstalled the other ones and haven’t kept up with them. There may be better ones out there, these are the ones I’m keeping up with
The ads come from an ad network where there is very little visibility into what’s going to be displayed in your app. And bad people also keep managing to get their ads published even though the ad network doesn’t allow them
And it all ties into the whole targeted advertising, where they also make sure very few people get the bad ad, and tries to target people they think may be more susceptible to these kinds of tactics. Depending on the amount of interactivity allowed, the ad can even display two different things if it deems you too savvy to fall for it.
It’s basically unescapable unless you only use apps without ads, or pay for the ad-free versions.
The whole advertising industry is sketchy, more news at 10.
Pi-hole blocks ads served by these networks just fine. Never seen an ad in Boost for Lemmy or for Reddit, though I tend to use Jerboa now that I’ve gotten used to it while I was waiting for Boost for Lemmy to release.
DNS based adblocking like Pihole or Adguard limits you to receiving advertising hosted by the app provider (youtube for example) which is usually better curated than third party advertising networks and less commonly found at all.
To be truly effective you must also block DoH and DoT. The first can only be done with endpoint lists, since it is https.
Maybe in comming years, but I’ve never encountered an ad served explicitly through DoH/DoT. It’s certainly possible, just not actually in use yet.
You can also setup DoH front and back ends for pihole so traffic entering and leaving it is encrypted. When/if it becomes necessary I’ll probably look into https packet inspection using custom Root certs to force clients to use my local DoH services and block other traffic, or look into inspecting the SNI to apply blocking there; but again its just not needed yet and may not be for a long time. We’ll see. I’m sure the pihole/Adguard teams are also investigating solutions.
Hey, could you elaborate or send some lecture? I have the upstream quad9 DoH address in adguard. It’s supposed to better encrypt my traffic right? Never saw any ads or strange DNS requests.
Never heard about ads being inject though DoH or DoT, or did I misunderstood your comment?
Theoretically an app could use a custom DoH endpoint to retrieve ads instead of the standard dns provided by the system. As this uses purely https without a preceding dns request, pihole/adguard would fail to block it; but it’s just not something currently employed.
Yep, also the ads don’t get initialized at all if the user buys the ad-free version (going to top all in the Lemmy Boost community should bring up the post about it). It’s relatively cheap and the dev is very active with bugs and requests. The dev is developing for the Fediverse and I’m happy to support that (as well as devs for Sync, Connect, Lemmy, etc.)
I like Boost and paid for ad-Free, but a lot of other clients should work for your needs. While they might not be privacy focussed, many are open source so you can check what is going on.
My preference goes
I uninstalled the other ones and haven’t kept up with them. There may be better ones out there, these are the ones I’m keeping up with
Dns adblocking blocks these 100%
Love how the top comment is a rando saying it’s unavoidable but the dev literally says below that they fixed it.
The [exact ad from the] specific advertiser will never be seen again, so indeed the issue has been mitigated.
Other bad actors are still out there, though, hence the need for the report button the dev mentioned.