Can I use DNS anti-tracking and a VPN on my Mac at the same time?
-
When my VPN is turned on I have noticed that DNS anti-tracking logs don’t show anything, then when the VPN is off there is a stream of logs again. I am assuming when the VPN is turned on it displaces the DNS anti-tracking that uses the VPN. I know you can only use either VPN or DNS anti-tracking via VPN on Android but is it the same on the Mac Osx?
-
If so, does it matter, as it may mean more cross-app tracking is allowed but if it is not identified with my own IP address I guess that is OK as it cannot be linked to me. Does that seem right?
Thanks for any feedback!
A VPN will prevent any DNS tracking. If you’re running a Mac (on macOS Monterey), though, you can just enable iCloud Private Relay, which uses a type of onion-skinning that obscures your IP and prevents DNS tracking, but provides less protection that a VPN.
Neither will stop cross-app tracking. This is an OS feature and is typically not something desktop OSs do (or need to do). Desktop apps don’t work the same way mobile apps do and don’t really track each other.
Exactly what it it that you’re trying to accomplish? If you can be more specific about the task you’re trying to accomplish, I can give more specific advice.
It depends on the VPN and how they’ve configured their DNS and your definition of “anti tracking”.
So anything connected to a network will reach out to a DNS server to figure out what IP number you need to get to whatever.com. This is typically set by your internet service provider. Typical DNS is sent unencrypted. The ISP knows your IP, and many if not most can implement some kind of tracking.
Your DNS server setting can be set by your network, or you can choose your DNS provider in your network settings.
A VPN both encrypts your traffic and sets a different DNS server, which depends on the VPN. Whether or not the VPN or the VPNs DNS is tracking anything depends on the business practices of the VPN.
If you are using the Chrome browser, all bets may be off, as Google can track anything there, VPN or not.
Ah, that’s really useful, many thanks. I didn’t know desktop apps did not track each other the way mobile ones do. I have Catalina. On what I am trying to accomplish, good question. I just think it is wrong that my data/activity can be identified and collected and can be identified with me via my IP address and I wish to do what I can to stop this. Not to hide anything in particular just because I think this is unethical.
Ps I have been using tracking blockers on Android and Mac but understand that my ISP can still see the activity on my IP address so my next step is to stop this, hence trying a VPN recently.
Thanks. I use Firefox. It seems to me tracker blockers do so much more to block trackers than VPNs do so I’m better off using Tracker Control than a VPN even if mine is the relatively ethical Mozilla.
Well, most desktop apps don’t communicate with each other or with anything else via the internet unless they’re specifically an online app. Unless they’re checking for updates or unless they’re sending anonymous app usage metrics — and when they do either of those things, they almost always tell you they’re doing that and give you the option to opt-out during install and in the preferences.
If you want more control of that, I suggest you install a very nice, free, open-source app called Lulu from the nice people at Objective-see. This app will give you granular network access control over every app on your Mac and precisely what access to incoming and outgoing connections it has. It’s simple to use.
Apps running on your Mac are sandboxed, like those on your iPhone, but macOS has much better security than iOS (by virtue of being more robust), and less effort goes into cross-app tracking than on mobile platforms. Most of that is done via websites and cookies, and there’s extensions for that, too. First step is never, ever, ever use Chrome. Ever. You might as well just send all of your private information to Russian and Chinese hackers directly. And set your RAM on fire while you’re at it.
Use Safari (although not the version native to Catalina, it’s too old) or Firefox. You can download Safari Tech Preview to get the latest on your version of macOS (or just upgrade to Monterey). Then install an ad blocker like uBlock Origins (or Ad Guard on Safari, the only one for Safari I know that blocks all ads, including YouTube ads).
A tracking blocker just stops websites from using tracking cookies, and may not work all the time. That doesn’t do anything re: your isp.
Thanks. I tried Lulu but there were some aspects I didn’t understand and when I asked the developer about them I didn’t get a reply. I use NextDNS on the Mac and Tracker Control on Android. Yes, I use Firefox with uBlock. That side of things (anti-tracking) I feel on top of. The issue is that when using a VPN, Tracker Control and NextDNS become disabled. I knew that would happen with Android but did not know it would with the Mac. So it seemed to me I had gained IP address anonymity but then lost some tracking protection. This is my understanding but maybe I have misunderstood.
Yes, I understand that. This is why I have started to use a VPN for the ISP issue.
Anti-tracking protection should be enabled as part of Firefox. It’s actually part of the browser itself. It’s also built into the latest version of Safari in Monterey, should you ever upgrade. This is strictly a web thing.
Again, lulu is pretty simple, and you should be able to glean most of its functionality by just messing around with it a bit. Basically, when an app requests access to the internet or your network, you’ll be prompted to grant permission. When you installed it, it automatically white-listed all existing apps. You can go into the app settings to review that whitelist and change anything you like.
As for your Android phone, there’s no way to prevent tracking. The entire operating system is based off of tracking everything you do and selling your private data to google. It’s basically a google-brand tracking device full of tracking apps, all highly-engineered to track everything about you for profit. Of you don’t like that, get an iPhone.
iOS is specifically engineered to do everything possible to stop tracking. It’s why iPhones are more expensive— the phone isn’t subsidized by the sale of your private data.
Look, don’t be coy. If you’re trying to prevent your isp from seeing you downloading torrents, just say so, and I can recommend for you a proper solution.
Yes, understood about anti-tracking in Firefox. I was more thinking by losing NextDNS I would lose anti-tracking elsewhere on the computer beyond Firefox. Ditto for losing Tracker Control on the Android mobile. But maybe there is not much other tracking going on on the Mac from what you say.
Understood about Lulu. I got all that that you mention. There was something else that I didn’t get, I must admit I can’t remember what it was now.
Thanks. Tracker Control on Fdroid is pretty good at stopping lots of tracking on the Android phone. The logs show this and it is well respected. I understand about the privacy protections on an iphone but they are bit expensive for me. I prefer to modify the Android phone as it stands.
No that’s not the case. I don’t torrent.
You may be losing a specific service or two, but the functionality, that is to say, what it was doing or blocking, is still being performed by another service.
You can get cheap iPhones or even free iPhones with certain plans/upgrades. If you just don’t get the newest iPhone, you can get one comparably priced. Hell, many carriers offer new ones if you trade in your Android phone. And iPhones last faaaaaar longer than android phones.
I guess the question is: how important is your privacy to you?
Edit: I have an iPhone 11 Pro and haven’t seen much of a reason to upgrade to the 12 or 13 models. There seems to be a law of diminishing returns in the last couple of years on all smartphones, as there’s just a ceiling on features and screens. Like… how much more can they make these things do that’s worth upgrading for?
Well, you have a vpn now, so if you’re ever interested, I have 15 year’s experience running a Plex server. I can easily help you set one up. It’s not that difficult 
What is a Plex server and why would I need one?
