Network-wide ads & trackers blocking DNS server
A small bugfix and security release. We are working on new features in future releases.
See also the v0.107.51 GitHub milestone.
Changes compared to the previous beta, v0.108.0-b.55. See CHANGELOG.md for all changes.
A special thanks to our community moderation team, @AdguardTeam/community-moderators, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
They say, if it isn't broken — don't fix it. Unfortunately, this is not the case with the last AdGuard Home update :sweat: A small portion of users haven't been able to start AdGuard Home at all, and so we are rolling out this hotfix.
A special thanks to our community moderation team, @AdguardTeam/community-moderators, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
See also the v0.107.50 GitHub milestone.
Fast approaching summer promises everyone its warmth, and all kinds of bugs are crawling from under the rocks and twigs to enjoy the sun :sun_with_face:. Here's a patch to make sure that they stay in the grass and nowhere near AdGuard Home.
A special thanks to our community moderation team, @AdguardTeam/community-moderators, contributor @looklose, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
Private rDNS resolution now also affects SOA
and NS
requests (#6882).
Rewrite rules mechanics were changed due to improved resolving in safe search.
Acceptance of duplicate UIDs for persistent clients at startup. See also the section on client settings on the Wiki page.
Domain specifications for top-level domains not considered for requests to unqualified domains (#6744).
Support for link-local subnets, i.e. fe80::/16
, as client identifiers (#6312).
Issues with QUIC and HTTP/3 upstreams on older Linux kernel versions (#6422).
YouTube restricted mode is not enforced by HTTPS queries on Firefox.
Support for link-local subnets, i.e. fe80::/16
, in the access settings (#6192).
The ability to apply an invalid configuration for private RDNS, which led to server inoperability.
Ignoring query log for clients with ClientID set (#5812).
Subdomains of in-addr.arpa
and ip6.arpa
containing zero-length prefix incorrectly considered invalid when specified for private RDNS upstream servers (#6854).
Unspecified IP addresses aren't checked when using "Fastest IP address" mode (#6875).
Changes compared to the previous beta, v0.108.0-b.54. See CHANGELOG.md for all changes.
A special thanks to our community moderation team, @AdguardTeam/community-moderators, contributor @looklose, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
Private rDNS resolution now also affects SOA
and NS
requests (#6882).
Rewrite rules mechanics was changed due to improve resolving in safe search.
Acceptance of duplicate UIDs for persistent clients at startup. See also the section on client settings on the Wiki page.
Domain specifications for top-level domains not considered for requests to unqualified domains (#6744).
Support for link-local subnets, i.e. fe80::/16
, as client identifiers (#6312).
Issues with QUIC and HTTP/3 upstreams on older Linux kernel versions (#6422).
YouTube restricted mode is not enforced by HTTPS queries on Firefox.
Support for link-local subnets, i.e. fe80::/16
, in the access settings (#6192).
The ability to apply an invalid configuration for private rDNS, which led to server not starting.
Ignoring query log for clients with ClientID set (#5812).
Subdomains of in-addr.arpa
and ip6.arpa
containing zero-length prefix incorrectly considered invalid when specified for private rDNS upstream servers (#6854).
Unspecified IP addresses aren't checked when using "Fastest IP address" mode (#6875).
After the last update it became possible for banned users to make DNS queries over encrypted protocols. This behavior, of course, was not intended, and is fixed by this hotfix.
We apologize for this oversight and will do our best to avoid repeating such mistakes in the future.
See also the v0.107.48 GitHub milestone.
Another security and bug fix update, but this time we also fix a :clock3: time zone selection issue and a few other annoying bugs!
A special thanks to our community moderation team, @AdguardTeam/community-moderators, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
See also the v0.107.47 GitHub milestone.
Time Zone Database is now embedded in the binary (#6758).
Failed authentication attempts show the originating IP address in the logs, if the request came from a trusted proxy (#5829).
Go 1.22 support. Future versions will require at least Go 1.23 to build.
Currently, AdGuard Home uses a best-effort algorithm to fix invalid IDs of filtering-rule lists on startup. This feature is deprecated, and invalid IDs will cause errors on startup in a future version.
Node.JS 16. Future versions will require at least Node.JS 18 to build.
Resetting DNS upstream mode when applying unrelated settings (#6851).
Symbolic links to the configuration file begin replaced by a copy of the real file upon startup on FreeBSD (#6717).
As promised in the notes for the previous release, this update brings some quality-of-life improvements as well as a few bug fixes :wrench:.
See also the v0.107.46 GitHub milestone.
Ability to disable the use of system hosts file information for query resolution (#6610).
Ability to define custom directories for storage of query log files and statistics (#5992).
Private rDNS resolution (dns.use_private_ptr_resolvers
in YAML configuration) now requires a valid "Private reverse DNS servers", when enabled (#6820).
NOTE: Disabling private rDNS resolution behaves effectively the same as if no private reverse DNS servers provided by user and by the OS.
Statistics for 7 days displayed by day on the dashboard graph (#6712).
Missing "served from cache" label on long DNS server strings (#6740).
Incorrect tracking of the system hosts file's changes (#6711).
Changes compared to the previous beta, v0.108.0-b.53. See CHANGELOG.md for all changes.
A special thanks to our open-source contributors, @hoang-rio, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
Private RDNS resolution (dns.use_private_ptr_resolvers
in YAML configuration) now requires a valid "Private reverse DNS servers", when enabled (#6820).
NOTE: Disabling private RDNS resolution behaves effectively the same as if no private reverse DNS servers provided by user and by the OS.
Statistics for 7 days displayed by day on the dashboard graph (#6712).
Missing "served from cache" label on long DNS server strings (#6740).
This is a small release containing a security update, a few fixes, and a small feature. More to come soon!
A special thanks to our open-source contributors, @hoang-rio, as well as to everyone who filed and inspected issues, added translations, and helped us test this release!
See also the v0.107.45 GitHub milestone.
Starting with this release our scripts are using Go's forward compatibility mechanism for updating the Go version.
Important note for porters: This change means that if your go
version is 1.21+ but is different from the one required by AdGuard Home, the go
tool will automatically download the required version.
If you want to use the version installed on your builder, run:
go get go@$YOUR_VERSION
go mod tidy
and call make
with GOTOOLCHAIN=local
.
Missing IP addresses in logs when querying for domain names from the ignore lists.
Blank page after resetting access clients (#6634).
Wrong algorithm for caching bootstrapped upstream addresses (#6723).