anudeepND / whitelist

A simple tool to add commonly white listed domains to your Pi-Hole setup.
MIT License
4.22k stars 284 forks source link

whitelist CDN fraud prevention site *.forter.com and Zelle banking #105

Closed SomePersonSomeWhereInTheWorld closed 4 years ago

SomePersonSomeWhereInTheWorld commented 5 years ago

I made a post on the pi-hole discourse, but no-one has replied. Within a site like swimoutlet.com, they use a fraud protection service called forter.com. We also found when Google shopping a page was being blocked with the subdomain clickserve.dartsearch.net. I also posted how Zelle within Citbank.com is blocked, which I'm pretty sure is *.online-metrix.net.

On a side note I've tried to white list all of the Google Play Store. I've whitelisted all of the [1-20].client-channel.google.com subdomains and others mentioned here, as well as ssl.google-analytics.com. Installation just hangs, tried on multiple Android phones.

anudeepND commented 5 years ago

@RobbieTheK forter.com and its subdomains are not blocked in default blocklists. Can you paste the output of pihole -q forter.com?

SomePersonSomeWhereInTheWorld commented 5 years ago

pihole -q forter.com

perhaps it's another domain then?

pihole -q forter.com
 Match found in Whitelist
   93e140b8b0e84b09ac891c94e68686d2-c74f8a20b3ca.cdn.forter.com
   c74f8a20b3ca.cdn4.forter.com
   cdn0.forter.com
   cdn3.forter.com
   cdn4.forter.com
   cdn9.forter.com
   cdn.forter.com
SomePersonSomeWhereInTheWorld commented 5 years ago

Here's another, landing pages from emails never redirect properly with this:

pihole -q trackcmp
 Match found in list.0.raw.githubusercontent.com.domains:
   trackcmp.net
 Match found in list.2.sysctl.org.domains:
   trackcmp.net
anudeepND commented 5 years ago

@RobbieTheK trackcmp.net seems to be a email tracker, so it will not be added

SomePersonSomeWhereInTheWorld commented 5 years ago

@RobbieTheK trackcmp.net seems to be a email tracker, so it will not be added

OK that I understand but what about *.forter.com?

anudeepND commented 5 years ago

@RobbieTheK I will look into it, even I had some of *.forter.com in my Pihole log (Vox media maybe?)