DNS in vivaldi 3.5
-
Hello,
so when I updated today to 3.5 I noticed I suddenly see ads on websites.
However, Im not supposed to see them. I have my own little script which fetches adlists and adds it to a hostfile for dnsmasq on my router (its similiar to pihole but just a simple script/config on my router)checked my settings and everything and I think all is setup correctly.
deactivated google DNS in settings and cleared host cache via chrome://net-internals/#dns . ads still there
checked other browsers on my PC and they dont show the ads.
checked my notebook which is still on 3.4 and in the same network - no ads (although google DNS is activated!?)any idea whats going on?
Cheers
-
@killermiller
did I understand you right: you've an adfilter at your router but only vivaldi 3.5 shows nevertheless some ads (as the only browser in your home network)? sounds really weirdI guess, you didn't tried a private window? and/or a guest profile? I think, there's a strange extension which don't work like it should
-
yes, I have a custom hostlist added to my dnsmasq config on the router.
IE, FF + EDGE (after deactivating secure DNS) => no ads, so its not my windows DNS configuration
Vivaldi 3.5 PC => ads
Vivaldi 3.5 Android Phone => ads
Vivaldi 3.4 Surface => no adsand yes, no browser has an ad block extension installed
so it seems (my) vivaldi 3.5 is ignoring the OS DNS setting but using its own (google?) -
@killermiller That's a very reasonable deduction.
It's can be tricky determining which DNS a particular client is actually using though. I'm not sure how to do it, with the exception of special pages that certain 3rd-party DNS setup for testing.
What does Chrome do, btw?
-
You can find the remote address (IP) by looking in the Devtools.
https://superuser.com/questions/633714/how-to-get-remote-ip-in-google-chrome-browser/1254200#1254200
You can then see what IPs the browser is getting from your router.There's also tools out there to capture network DNS traffic. Since we're on Windows here I recommend DNS Query Sniffer but of course and tool that shows the source process and network request to port 53 would do.
https://www.nirsoft.net/utils/dns_query_sniffer.html -
so, I found it
open chrome://settings/security deactivated secure dns
voila, Im adfree again. this should be configureable from vivaldi settings though. and not be activated by default ?
-
@killermiller Good.
It's not default, maybe one of your extensions have set it or you've earlier set some flag to enable it and it only got activated with the new Chromium version.Apparently, this is now the default setting in Vivaldi
-
@Pathduck Not only that, but it's grayed out for me. I couldn't enable it if I wanted to.
-
mmhmmm yes and no. Im pretty sure its activated by default - practically.
I downloaded the current snapshot as standalone and its activated by default + the option is not present in my vivaldi 3.4 installationIm not sure how the chromium interpretation of "With your current service provider" (which is set after fresh install) is though, maybe it automatically falls back to googles DNS if the default DNS its not resolving on 443? maybe it was changed recently?
-
@killermiller I can't test this because I use some GPOs set globally so the option is disabled for me.
Are you sure you've not set some GPOs in Windows at some time?
If you can show that Secure DNS is always enabled by default in a clean install (i.e. no profiles) that would be a serious bug and you should report it. Easiest way to test would be to install as a standalone version.
https://vivaldi.com/bugreport/ -
@Pathduck
im pretty sure. the screenshot is from fresh install of the standalone snapshot version
unfortunately chrome settings url is not working in android, but if you see my posts above its pretty obvious its activated there as well (still see the ads there) -
@Pathduck
the screenshot above from killermiller shows the exact configuration at my system, so I think too, that this is the (new?) default setting -
raised VB-75137
-
@Pathduck said in DNS in vivaldi 3.5:
@killermiller I can't test this because I use some GPOs set globally so the option is disabled for me.
As mentioned, it is is for me too, but I've only set one GPO for Vivaldi, and it's unrelated to that.
Which one have you set that you think it is?
-
I think it might be because I use google DNS as my fallback
so I assume router is not responding to DNS querys :853? so it tries the secondary DNS and google is
-
I just did a fresh 3.5 (x64) in a Win10 VM:
And DNSleaktest.com (standard test) shows:
IP Hostname ISP Country
162.158.105.10 None CloudflareThis is not the case on the host system where the setting is grayed out. It shows my ISPs DNS there.
-
@killermiller Holy **** I think you're right. I removed the GPOs I had set and the Secure DNS setting was enabled set to "Current Service Provider".
Apparently since I've set my OS to Router, then Cloudflare (primary 192.168.0.1, secondary 1.1.1.1), Vivaldi now starts to use its secure DNS (162.158.221.21) instead of my router.
This is bad... really really bad
-
@Pathduck Yes, here the OS is set to the router...and the router has 1.1.1.1 as the primary....
-
I use 9.9.9.9 and 1.1.1.1 as secundary
-
@rseiler And what's your secondary on the OS?
In your case if your secondary is not set, then AFAIK the browser should not be able to "guess" what provider you need for Secure DNS. Unless your router provides it, which I doubt.
Since Secure DNS traffic is just HTTPS it might be tricky to sniff where the browser requests DNS from. I found this online service: https://browserleaks.com/ip (scroll down to DNS)
I'm really unsure of the details on how secure DNS works, which is my biggest problem with it. I want to control what the browser uses, not leave it up to some muppet developers (Chromium, not Vivaldi...) DNS resolution belongs in the operating system NOT the browser