this post was submitted on 15 Jul 2024
222 points (97.4% liked)

Privacy

32159 readers
202 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I have not any prior experience with installing custom ROMs, but after trying it out (and getting stuck, and googling and finding answers) I successfully did it. Below is my home screen if anybody is curious:

I use OpenBoard for my keyboard. Unfortunately I am still dependent on Play Store since some of the apps I need can only be found there. Sometimes it feels meaningless committing to this whole thing because I'm not perfectly private; then I think this is better than using a regular iPhone or Android phone.

So far I'm liking it. I am naturally inclined to feel hesitant about using this as my main phone and plugging in a SIM since it's custom, but I'm slowly making the transition.

Feel free to share any beginners advice or your own experience using GOS for the first time. Cheers!

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 13 points 4 months ago (1 children)

Don't forget to change your DNS provider to something such as NextDNS for added benefits

[–] [email protected] 2 points 4 months ago (2 children)

Does it have any benefits over just running pihole, other than reliability?

[–] [email protected] 8 points 4 months ago (3 children)

You aren't always home, therefore when you aren't home it's useful.

[–] [email protected] 3 points 4 months ago (1 children)

I have not yet looked into the DNS topic. What are the risks if I use the provider's default DNS? Or what are the advantages of using a different DNS?

[–] [email protected] 3 points 4 months ago (1 children)

ISP DNS servers often lies, depending on your country, a lot do DNS blocking so it's a way to evade basic censorship. Also some alternative DNS can lie in useful ways, for adblocking or malware protection. You can also check mullvad DNS.

[–] [email protected] 2 points 4 months ago

NextDNS even let’s you customize your DNS filter. You can choose which blocklists you want to use, and you can manually whitelist/blacklist individual domains. It also has other cool features like parental controls and malware protection.

[–] [email protected] 2 points 4 months ago (1 children)

You can still use PiHole as your DNS when not home if you setup a VPN. For me that was the route I went.

[–] [email protected] 2 points 4 months ago* (last edited 4 months ago) (1 children)

or you can allow public authenticated access to dns over https... (just don't expose the raw udp dns server, it's a really bad idea)
(not sure if DoT can also support auth, but if it does that's great because android supports dot natively)

[–] [email protected] 1 points 4 months ago* (last edited 4 months ago)

I know I don't want to open up any more ports than I have to, but you're right, that does sound like another alternative to setting up VPN.

Since I access more than just my pihole when connected to my home network. And because I want access to my home services, and don't want to open up access to the public, opening one port and connecting to VPN is the way to do it. I have one port opened up for my VPN, and in order to connect you have to have my IP or my domain pointed at the IP, and you have to have a Wireguard profile setup, and know what port is open. So that does help a tad bit with my security concerns.

Edit: how would I go about that if I felt so inclined? Any tips?

[–] [email protected] 1 points 4 months ago

You might be underestimating the OP

[–] [email protected] 6 points 4 months ago (1 children)

It also works when using cellular data or connecting to a different Wi-Fi network. Your Pi-Hole only works when you’re at home or when you VPN into your home network

[–] [email protected] 2 points 4 months ago (1 children)

Fair. I always assumed I could just point to it while I'm out, but i also haven't put a lot of thought into it yet lol

[–] [email protected] 1 points 4 months ago

I mean you technically could expose the Pi-Hole from your home network on the internet, but I don’t recommend it. A VPN (either a simple WireGuard setup or something more fancy like NetBird, ZeroTier or Tailscale) could work, but I think NextDNS is the easier solution. Alternatively you could look into running your Pi-Hole on a VPS with WireHole.