mikegchambers
commented
5 years ago Wow. I’d not come across DNSCloak before. What can Lockdown do that it can’t? Is there any point in combining? DNSCloak can block domains and IPs too.
Open fantom-x opened 5 years ago
mikegchambers
commented
5 years ago Wow. I’d not come across DNSCloak before. What can Lockdown do that it can’t? Is there any point in combining? DNSCloak can block domains and IPs too.
fantom-x
commented
5 years ago DNSCloak is not for blocking domains: it is about authenticating and securing DNS traffic (https://dnscrypt.info/) to prevent DNS hijacking, etc. Two different usecases, but both are using the same approach: a VPN tunnel on iOS. Thus both tools cannot be used at the same time.
fantom-x
commented
5 years ago I think that combining these two together will actually complete the Lockdown app as it is currently solving one problem only while preventing solutions to other and related problems from working.
mikegchambers
commented
5 years ago I took a look at DNSCloak. It absolutely can block domains and IPs. Just create your own blacklist file. It also has whitelists. It seems to me that the one-app-to-rule-then-all already exists.
fantom-x
commented
5 years ago Well, I like Lockdown’s idea of the lists being managed automatically without users’s intervention.
mikegchambers
commented
5 years ago That would be nice if they add that feature. At the moment Lockdown just loads a list of blocked URLs and IP's that are compiled into the app. You could suggest a feature where this list is updated more often than just when the app updates. (They're probably working on it.)
As for DNSCloak, since you brought it to my attention, I've been running it, and so far I like that I see. I have a blocklist that I create on my mac as a textfile, it saves into iCloud drive, and DNSCloak simply loads that. When I want to make a change, I update the file on my mac and reload the list, boom, job done.
Lockdown has a few hundred (maybe) blocked URLs, my DNSCloak is close to 125k! (With so much more functionality)
Thank you for showing me DNSCloak! :)
fantom-x
commented
5 years ago @mikegchambers interesting, I missed the blacklist functionality. Can you share the source urls that you use for your blacklist?
mikegchambers
commented
5 years ago So DNSCloak uses dnscrypt-proxy, and the docs for that are here: https://github.com/jedisct1/dnscrypt-proxy/wiki/Filters
And that page links to some public lists which are here: https://github.com/jedisct1/dnscrypt-proxy/wiki/Public-blacklists
Looks like I can only use one VPN configuration at a time and it is either DNSCloak or Lockdown. Is it possible to make both work together or integrate dnscrypt-proxy (DNSCloak) into Lockdown?