[APP][Root][OFFICIAL] AdAway v4.3.0 :: [2019-11-01]

In my Adaway 3.2 this DNS log does not display domains that are already blacklisted. And I need to detect attempts of applications to make DNS request which domain is already in the black list. That's what I need.

DNS Log does not allow this now. Or in 4.2.9 the log works differently, not as in 3.2?

That would be called white listing and yes, this has worked for a long time. Did you carefully read that page?

For example, it can be implemented like this:

1. Change in Adaway 127.0.0.1 to 127.0.0.5 for forwarding.

2. Run the tcpdump:
tcpdump -i any -s 0 host 127.0.0.5 -w /tmp/dnsblock.pcap

3. generated some traffic, for example, so:
wget 44444.ru
where 44444.ru is blacklisted by Adaway

4. We get in the dump something like:
16:08:55.446532 IP 44444.ru.35318 > 44444.ru.http: Flags [s], seq 3975137463, win 32792, options [mss 16396,sackOK,TS val 3364337500 ecr 0,nop,wscale 7], length 0
16:08:55.446563 IP 44444.ru.http > 44444.ru.35318: Flags [S.], seq 1338750778, ack 3975137464, win 32768, options [mss 16396,sackOK,TS val 3364337500 ecr 3364337500,nop,wscale 7], length 0
16:08:55.446587 IP 44444.ru.35318 > 44444.ru.http: Flags [.], ack 1, win 257, options [nop,nop,TS val 3364337500 ecr 3364337500], length 0
16:08:55.446633 IP 44444.ru.35318 > 44444.ru.http: Flags [P.], seq 1:107, ack 1, win 257, options [nop,nop,TS val 3364337500 ecr 3364337500], length 106
16:08:55.446662 IP 44444.ru.http > 44444.ru.35318: Flags [.], ack 107, win 256, options [nop,nop,TS val 3364337500 ecr 3364337500], length 0
16:08:57.553569 IP 44444.ru.http > 44444.ru.35318: Flags [P.], seq 1:619, ack 107, win 256, options [nop,nop,TS val 3364339607 ecr 3364337500], length 618
16:08:57.553599 IP 44444.ru.35318 > 44444.ru.http: Flags [.], ack 619, win 266, options [nop,nop,TS val 3364339607 ecr 3364339607], length 0
16:08:57.553689 IP 44444.ru.35318 > 44444.ru.http: Flags [R.], seq 107, ack 619, win 266, options [nop,nop,TS val 3364339607 ecr 3364339607], length 0

5. Select domains from the text, remove duplicates, and save log:
cat /tmp/678.pcap | grep "http >\|https >"| awk '{print $3}'|sed s/.https/""/|sed s/.http/""/|uniq > /tmp/dnsblocklog

6. Result:
[[email protected] etc]# cat /tmp/dnsblocklog
44444.ru

You can also apply some sort in the command.

This is an example way. Developers please add this feature. You'll probably do much better than I suggested.

---------- Post added at 04:19 PM ---------- Previous post was at 04:11 PM ----------

Sorry for my bad English, maybe I don't understand you or you don't understand me.

Version 3.2 100% doesn't have what I'm talking about. I have not yet installed, 4.2.9, if there is something changed, it is good, if not, we do not understand each other.

In changelog, such a feature from 3.2 to 4.2.9 was not declared.

Later I will specifically update the version and see for myself.


P.S. I installed 4.2.9. And there is no such log, about which I spoke!!! There is no such functionality!

Moreover, in version 4.2.9 became just a terrible interface! Very uncomfortable. Usability has deteriorated greatly. I'm going back to version 3.2.

Upgraded the algorithm.

1. Change in Adaway 127.0.0.1 to 127.0.0.5


2. Run the tcpdump:

tcpdump -i any -s 0 dst host 127.0.0.5 -l -t -q > /tmp/dnsblock.pcap

Now you can not turn off tcpdump, as in Adaway.


3. Getting a list of hosts that are accessed by applications and that are already added to the Adaway blacklist. Оne command.

cat /tmp/dnsblock.pcap | grep "http: \|https: " |awk '{print $4}'|sed s/.https:/""/|sed s/.http:/""/|uniq


Here is such would add in Adaway. Or do something different.

Magisk Manager 20.0, enabled Systemless Host, Adaway 4.2.9.
It doesn't prompt for root request.
In Magisk's superuser app list, Adaway doesn't appear.

Do you have hide Magisk Manager enabled?

Also try disable ad blocking in Adaway then re-enable it.

Was this an update of Magisk or fresh install? What device and OS?

Hide Magisk Manager is not enabled.
I cannot disable ad blocking as it's not enabled
Fresh install of Magisk and Adaway.
Lenovo K5 Pro with GSI Linage 16.0 Android Pie 9

Do other apps request root access? Have you rebooted after installing everything? Have you tried grabbing a log while enabling ad blocking?

Yes, File Manager such as Xplore requested for root and I can see it in Magisk Manager superuser app.
I have rebooted and clear Adaway data few times.
How do I grab the said logs?

Use an app like MatLog, and also turn on verbose logging in Adaway preferences.

Doesn't LineageOS have its own built in root? I thought it was just a mater of turning on root in Developer Options. If I'm right, maybe that's conflicting.

Not by default. The preference is there but a simple extra zip with su must be installed for it to be available.

https://download.lineageos.org/extras

( Edit : While people are certainly free to install Magisk, Lineage does not support it since there is a native su option; when Magisk causes issues they're on their own. )