Check out the original issue:
https://github.com/uBlockOrigin/uBlock-issues/issues/780
Here's what we should do:
Additionally to implementing this in AdGuard Home, we should do the following:
dnsproxy
's mobile APIJust in case the following is overlooked.. It would be good if this goes through the whole CNAME chain. I.e.
ad.firstparty.com cname unblocked.company2.com
unblocked.company2.com cname blocked.adcompany.com
blocked.adcompany.com
This request should be blocked if either unblocked.company2.com or blocked.adcompany.com is blocked.
@hoshsadiq all CNAME records in the chain will be present in the recursor's response so this is not a problem:
$ nslookup test2.meshkov.info
Server: 2001:db8:7c02:1::1
Address: 2001:db8:7c02:1::1#53
Non-authoritative answer:
test2.meshkov.info canonical name = test1.meshkov.info.
test1.meshkov.info canonical name = example.org.
Name: example.org
Address: 93.184.216.34
Aah! Perfect!
Most helpful comment
@hoshsadiq all CNAME records in the chain will be present in the recursor's response so this is not a problem: