Raspberry Pi As an Ad Blocking Access Point

coop0030 writes "Adafruit has a new tutorial that will show you how to use your Raspberry Pi as a WiFi access point that blocks ads by default for any devices using it. This is really neat in that it would work for your Android or iOS device, your Xbox 360, TiVo, laptop, and more without needing to customize any of those devices other than to use your Raspberry Pi as the access point for WiFi. Using an ad-blocker can be useful for conserving bandwidth, helping out low-power devices, or for keeping your sanity while browsing the web!"

Cue the usual "debate" ...

[jc42]

... in which one faction points out that ads are funding much of the (commercial) Web, and if you suppress them, you won't have all that Free Content. Meanwhile another fraction is pointing out the huge waste of bandwidth and human time soaked up by all those annoying ads. And yet another faction takes the "Can't we all just get along" approach, by suggesting that the commercial folks should make their ads less annoying so that people don't suppress them.

Yeah, we've heard it all before, we'll hear it all again, and nothing much will change.

Re:Cue the usual "debate" ...

[CanHasDIY]

... in which one faction points out that ads are funding much of the (commercial) Web, and if you suppress them, you won't have all that Free Content. Meanwhile another fraction is pointing out the huge waste of bandwidth and human time soaked up by all those annoying ads. And yet another faction takes the "Can't we all just get along" approach, by suggesting that the commercial folks should make their ads less annoying so that people don't suppress them.

Screw annoyance, my ISP charges by the bit! If that's how it's going to be, then you're damn skippy I want more control over what bits get sent down my pipe.

If the advertisers want to bitch, they should bitch to Comcast/Mediacon/whoever.

Re:Cue the usual "debate" ...

[itsownreward]

Great! If I don't suck down their ads then I'm saving us both money!

Re:Cue the usual "debate" ...

[sjames]

If the ads pay by the click and he will never click as a matter of principle, then he IS saving them money.

Re:Cue the usual "debate" ...

[Lincolnshire+Poacher]

... in which one faction points out that ads are funding much of the (commercial) Web, and if you suppress them, you won't have all that Free Content.

Free content? I wish.

I pay economist.com more than $200 per year for their excellent news, and they still have the gall to try to bombard me with as many ads as a non-subscriber. Plus a 'subscribe now!' crawl-up from the bottom of the page.

Ads can go to hell.

Re:Cue the usual "debate" ...

[Entropy98]

The ads are served by the ad companies servers not the website owners.

Does no one on slashdot know how the internet works anymore???

Router

[MrEricSir]

Why do you need a RasPi for this? Why not do this in the router itself and save a little bit of power?

Re:Router

[jc42]

Because everyone loves Pi!

Yeah, except for the faction that prefers tau. ;-)

Actually, I'd conjecture that when we finally meet intelligent extraterrestrials, we'll find that those who have technology are evenly divided between those whose geeks memorize pi to zillions of places and those who memorize tau to zillions of places (in whatever base they use).

But I don't expect to be around to learn whether my conjecture is correct.

Re:Router

[I'm+New+Around+Here]

The intelligent alien would use base pi.

Then memorizing pi to zillions of places would be easy.

Or you can just run privoxy

[bored]

Privoxy can remove a lot more than just ads served from a given domain/server. It can remove ads served by the same domain/server as the source website, as well as a number of other features that make it pretty nice for speeding up browsing on devices that don't have ad/javascript blockers.

Re:Or you can just run privoxy

[Lincolnshire+Poacher]

Privoxy can remove a lot more than just ads served from a given domain/server.

It can for HTTP, but increasingly tracking and ad services are shifting over to HTTPS ( Google Analytics is 100% SSL now ).

Privoxy can't help there, as browsers use SSL Tunnelling when configured to use it as an HTTPS proxy. So it just blindly relays the ads through.

Annoying isn't the problem

[cbhacking]

For me, I block ads because they are actually a threat to browsing. In the old days, Flash ads that would pop out a player which extended off the end of the window would crash the browser. These days that's less of a problem, but there are plenty of others still around.

Privacy: advertising is probably the biggest non-government threat to online privacy. I don't really care whether advertisers would respect *my* DoNotTrack headers; I won't even connect to their servers. Supercookies? You'd need to be able to set them, first. Even if a certain site is allowed for some reason, I don't let it see my other browsing history; it gets only a distorted and meaninglessly narrow view.

Security: Advertising networks are one of the biggest problems to online security right now. At least once a month (on average, it comes in waves), one of the web comics I read gets hit with a malicious ad that attempts to serve malware / exploit kits to anybody visiting the site. This has also happened to high-profile reputable news sites and so forth as well. The ad providers don't seem to give a fuck, and the sites serving the ads can't really control the ad content before it's served. Whether it's browser exploits, Flash exploits, Java exploits, embedded PDF exploits, or something else, ad networks cheerfully serve up malicious garbage all the time. You know that advice about "avoid the seedier parts of the web"? Yeah, you can't do that without an ad blocker. Everything is seedy otherwise.

For sites that need money to keep them running, I donate. A few hundred dollars a year in donations is no big deal for me, and it's probably more money than the sites in question would get from my ad impressions anyhow.

Re:Annoying isn't the problem

[PRMan]

This is true. During the Beijing Olympics, one of my co-workers (also a contractor) went to the Chinese medal count page (sent there by NBC.com) and got a virus from one of the ads that infected several machines at the company. He was fired for checking the medal count. I had gone to that page as well, but I was using NoScript, so I didn't load a virus onto the company network and didn't get fired.

Re:Annoying isn't the problem

[elashish14]

Those sites can easily control the ad content before it's served, simply by hosting the advertising content themselves. If they did this, they probably wouldn't get picked up by my Ghostery filters, and they better not unnecessarily use javascript either (99.999% of the web which is written in javascript doesn't need to be). And of course, I block third-party cookies and wipe all other cookies at restart.

Web hosters have decided to use third-party advertisers for convenience. Ease of blocking the content is the price of said convenience.

Re:Cool...for now.

[vux984]

Seriously, though, this is another utility to download ad server lists, fair enough, but when enough people do this, content providers will just switch to serving the ads directly, the ad companies will forward it to them.

Maybe.

The increased costs of serving the ads directly may outweigh the return on the ads, breaking the business model.

Or at least force the ads to be more relevant, less bandwidth heavy, etc...

Both are wins.

Use RPZ! / Why Google PDNS / 4.4.4.4 is not GPDNS

[fuzzel]

Instead of shoving a list of addresses into a DNS server (dnsmasq) in this case, it would be better to use RPZ (http://en.wikipedia.org/wiki/Response_policy_zone)....

Next to that:

> Open the file with sudo nano /etc/resolv.conf and replace the contents with the following:
> nameserver 192.168.42.49
> nameserver 8.8.8.8
> nameserver 4.4.4.4

192.168.42.49 = apparently the address of the fake webserver (would be great if they configured that somewhere before making test queries....)
8.8.8.8 = Google Public DNS, no ads maybe but running all your DNS queries through Google is not helping much now does it.
4.4.4.4 = is not a valid DNS server, likely they meant 8.8.4.4 which is the secondary Google Public DNS address.

If you have a DNSmasq anyway, just let it recurse and play caching resolver, much better idea.

> iface wlan0 inet static
> address 192.168.42.1
> netmask 255.255.255.0
> post-up ip addr add dev wlan0 192.168.42.49/24

One just has to wonder which IP the box will be using for outgoing queries, depends a lot on the kernel....
Now if that was 192.168.42.49/32 the .1 would always be chosen, but as a /24 magical things will happen

Etoomanypitholes and lots of people will be bitten.

On a WGR614 v6?

[tepples]

Why not do this in the router itself and save a little bit of power?

Because not everybody's home router 1. is easily customized and 2. has enough memory. I've read that my seven-year-old NETGEAR WGR614 v6 doesn't have enough flash for DD-WRT, and some people don't want to bother soldering, and some other routers are tivoized not to run an unapproved kernel. If I were to replace it with newer hardware, what make and model of home router would you recommend for no more than the price of a Raspberry Pi?

Re:On a WGR614 v6?

[adolf]

Yeah, you're right.

But then there's the obvious counter-argument: Not everyone has a Rasberry Pi and a spare USB WiFi NIC kicking around, either.

If I were to replace it with newer hardware, what make and model of home router would you recommend for no more than the price of a Raspberry Pi?

You didn't set the bar very high, did you?

From adafruit:

$39.95 Raspberry Pi Model B 512MB RAM
$9.95 Adafruit Pi Case- Enclosure for Raspberry Pi Model A or B
$11.95 Miniature WiFi (802.11b/g/n) Module: For Raspberry Pi and more
$5.95 5V 1A (1000mA) USB port power supply - UL Listed
$7.95 SD/MicroSD Memory Card (4 GB SDHC)

== $75.75. Adding first-class USPS shipping (to Ohio) adds another $5.18.

That's a grand total of $80.93 to get enough RaspPi to build an access point (some assembly required). (And you still need an Ethernet cable, and a USB cable for power.)

Or, for $50, shipping included you can get the venerable Linksys WRT54GL. Comes pre-assembled with everything you need except third-party software, which is it is widely compatible with.

For a few dollars more than a pile of Raspberry Pi kit, you can also get an Asus RT-N16. It's a beastly little router for the price, and has a gigabit switch built-in along with 802.11n (2.4GHz only, sadly). It's about as compatible with third-party firmware as the WRT54GL.

They're currently going for about $84, shipping included. Also comes pre-assembled with everything needed except software.

Re:On a WGR614 v6?

[rts008]

Even though I was just lurking, thanks for your comment and links.

This reminds me why I stay on /. after the 'Dice Circus', and why I set up an account back when, after lurking for a few years!

I have learned more about a lot of stuff by way of ./ than I have in many classes/courses of study.

The diversity on subject matter, and expertise and level of knowledge, the 'out of the mouth of babes' moments,...it's all priceless, and justifies the statement that 'the internet has changed the world'.

Back on topic.....
Thanks to you I now feel the need to retire my old 'nix box I've been using as a gateway between my cable modem and router for my home LAN.
  It is becoming increasingly difficult and labor/time intensive to keep this crap out of my network. :-)

Off to the planning stage.....

Re:On a WGR614 v6?

[robot5x]

I'd like to vote for the wonderful TP-LINK TL-WR1043ND.

Currently US$53 at amazon, I have it running the excellent Gargoyle firmware and having all kinds of fun playing with user quotas and the QOS. You can put DD-WRT on it too with some cautions.

Ad server spoofing?

[JorDan+Clock]

Could it be used to spoof an ad server? I have used a number of Android apps that will continuously try to reach ad servers if you use any sort of ad blocks, which causes extra battery drain. Could this system be set up to send some placeholders so the app will stop trying to pull an ad?

Re:Wow! Amazing!

[rts008]

Think outside of the brainwashing box.
Quit thinking like a 'consumer', just inhaling what's force fed to you. We used to be 'customers'.

Use the concept provided and TRULY think about what would be a best fit for you, and make it happen.

The variations are almost endless for this problem.
(hint: think of the 'writeup' as just a suggestion for one of the many solutions, not the one and only solution)

The internet is a vast treasure house of stupefying proportions for knowledge....the winnowing the wheat from the chaff can be a problem, though.

I suggest customer reviews, and a little research to deal with the chaff problem.

Do you have knowledgeable friends/acquaintances? Most would be glad to help you out with advice.

Break out of that 'consumer' (I picture cattle at a feedlot, being force-fed to gain weight for slaughtering for market) mentality, and start thinking like a free, independent individual, instead of part of the herd of consumers...a customer that wants a particular thing either for need or desire....based on your decision, not some marketing department, or ad agency