Malware sites are the plague of the century! And it’s so easy to fall for them. Phishing, hacked website content, or malware-ads – one click and you are on a website you shouldn’t be.
One way to deal with the issue is to block malicious domains at DNS resolver level. The advantage is that you do not have to do any modification at the devices!
For quite a long time I used PiHole running on one of my RaspberryPIs. And I can totally recommend it! Unfortunately my Pi has become a bit unstable recently. I guess the SDcard is near its end of life. 😕 Until I get my RaspberryPi running stable again, I discovered another alternative:
Cloudflare also offers DNS Resolvers that are filtering out bad websites! Regarding their blog post, it is also privacy friendly. You can read more about DNS Resolvers and why it makes sense to change it on the Cloudflare website. And even if you have a PiHole running, you can use Cloudflare’s DNS as an upstream and use their level of protection as well.
The three flavours Cloudflare offeres as DNS Resolvers are:
- Primary DNS 1.1.1.1: NOT for blocking or filtering, safeguard user privacy and optimize efficiency
- Primary DNS: 1.1.1.2, Secondary DNS: 1.0.0.2: Malware Blocking Only
Primary DNS: 1.1.1.3, Secondary DNS: 1.0.0.3: Malware and Adult Content Blocking
IPv6 addresses can be found on Cloudflare’s blogpost.