Diversion Diversion - the Router Ad-Blocker v4.2.x (see new thread for 4.3.x)

[AntonK]

Hotfix applied from webui - worked a treat as usual - Many thanks

Same here. First time I'd applied any update from the webui (as opposed to shell-amtm). Worked great!

 

[Diamond67]

Updating blocking lists gives me this Error and I receive email because of Errors. Happens with both manual and scheduled updating.

Is there something I can do?

 processing file 2 of 5
 remote file newer: getting new file
 http://www.malwaredomainlist.com/hostslist/hosts.txt
######################################################################################################### 100.0%
 Error: http://www.malwaredomainlist.com/hostslist/hosts.txt
 Error: is not a valid hosts file, using backup file
 file is in hosts file format (IP-domain pair)
 processing file 2 done

 Errors were encountered during the update, sending email to

 

[thelonelycoder]

Updating blocking lists gives me this Error and I receive email because of Errors. Happens with both manual and scheduled updating.

Is there something I can do?

 processing file 2 of 5
remote file newer: getting new file
http://www.malwaredomainlist.com/hostslist/hosts.txt
######################################################################################################### 100.0%
Error: http://www.malwaredomainlist.com/hostslist/hosts.txt
Error: is not a valid hosts file, using backup file
file is in hosts file format (IP-domain pair)
processing file 2 done

 Errors were encountered during the update, sending email to

Remove the entry, this file is empty and no longer maintained.

 

[rankok]

I added this

echo insecure > /root/.curlrc

to my ssh client, and every time I start client, this code that is fired to command line without intervention...

I can't find any other working solution to add this command to startup script... is there possibility to create cron job??

On another positive note: My supposedly dead RT-AC87U sprung back to live today, trying to recreate @rankok 's woes with the expired cert.
So, thanks @rankok for encouraging me to try the ASUS Restoration tool one more time on that old router.

There a lastest OEM firmware from 2021/05/18, is there any benefit to update to router (RT-AC87U) to resolve this issue?

NOTE: I'm not aware and have limited knowledge about what AsusMerlin does to firmware files...

 

[thelonelycoder]

I added this

to my ssh client, and every time I start client, this code that is fired to command line without intervention...

I can't find any other working solution to add this command to startup script... is there possibility to create cron job??



There a lastest OEM firmware from 2021/05/18, is there any benefit to update to router (RT-AC87U) to resolve this issue?

NOTE: I'm not aware and have limited knowledge about what AsusMerlin does to firmware files...

The RT-AC87U is no longer supported by Asuswrt-Merlin and therefore will not get updates. While Asus may still release updates for their firmware for that model, this does not help as the two firmwares are not complementing each other. Installing either of them replaces all router files.

There is only one workaround for Asuswrt-Merlin firmware at the moment by adding the 'insecure' flag for curl.
This has been discussed in this thread: https://www.snbforums.com/threads/ac87u-all-download-attempts-failed.75049/

The gist of it is to add a file containing 'insecure' to a volatile place on the router.
For it to stick, one has to add the file after each reboot of the router.
Add this to the end of /jffs/scripts/services-start, make sure the file has the shebang line at the top and is executable.

It should look like this, omitting any other entries you may have in that file:

#!/bin/sh
[ -f /root/.curlrc  ] && [ "$(/bin/grep insecure /root/.curlrc)" ] || echo insecure > /root/.curlrc

Make the file executable if it did not exist before:

chmod a+rx /jffs/scripts/services-start

Then reboot the router.

Check if the .curlrc file exists and is populated correctly after the reboot:

cat /root/.curlrc

The output should look like this:

user@RT-AC87U-AD60:/tmp/home/root# cat  /root/.curlrc
insecure
user@RT-AC87U-AD60:/tmp/home/root#

Note that this workaround is only needed for routers running outdated Asuswrt-Merlin firmware.

 

[rlj2]

Welcome
This is Diversion - the Router Ad-Blocker for Asuswrt-Merlin

All install and update infos are on the Diversion website.

September 26 2021
Diversion 4.2 is now available

What's new in Diversion 4.2
NEW: Option to set alternate upstream name server(s) for Alternate blocking list in b, 6. Thanks @latenights
NEW: Option to force IPv6 entries even though IPv6 support is disabled on the router in b, 9. Thanks to @dobri
NEW: Option to opt out to support smallnetbuilder.com ads in el, 1, Hard coded whitelist setting.
NEW: Option to enable blocking list update error email when update fails in c.
CHANGED: email settings and password files moved to /jffs/addons/amtm/mail
CHANGED: Improved WebUI. It's not complete but will do for now.
CHANGED: YouTube video ad-blocking more options for tinkering (I know...).
CHANGED: openssl ecryption error for newer version 1.1.1x, password encryption is auto-updated.
CHANGED: el correctly processes added and removed domains. Thanks to @pioneerfreq
CHANGED: Numerous fixes and improvements

Important

• Use the SSH UI to update to this latest version. The Diversion 4.1.12 WebUI update function will fail.
• The email password is auto-re-encrypted if the routers openssl version requires it. Please check email function after the update. You may have to re-enter the password if my logic failed.
• Third party scripts that use the Diversion email settings need to update the path to email.conf and the password decryption code.

Diversion is free to use under the GNU General Public License version 3 (GPL-3.0).
If you like Diversion and find it useful, you can help it's further development with a donation.
Thank you!

Played around with diversion some this morning, then used its uninstall. It removed my entware? Which I had custom scripts in /opt/bin... wth

 

[dave14305]

Played around with diversion some this morning, then used its uninstall. It removed my entware? Which I had custom scripts in /opt/bin... wth

There would have been a secondary prompt to remove or keep entware, after choosing uninstall.

 

[rlj2]

There would have been a secondary prompt to remove or keep entware, after choosing uninstall.

your correct that it says press 1 to delete it all, 2 to save. Id think 2 should be default, but user error.

 

[thelonelycoder]

Played around with diversion some this morning, then used its uninstall. It removed my entware? Which I had custom scripts in /opt/bin... wth

It presents two options:
- Remove Diversion and keep Entware
- Remove Diversion and Entware

It helps if one reads what is presented.

 

[rlj2]

It presents two options:
- Remove Diversion and keep Entware
- Remove Diversion and Entware

It helps if one reads what is presented.

agreed, it was user error. I hit enter to fast. Im not sure why diversion would remove entware period, but in my humble opinion default should be not to. But this was my fault.

 

[thelonelycoder]

agreed, it was user error. I hit enter to fast. Im not sure why diversion would remove entware period, but in my humble opinion default should be not to. But this was my fault.

I have changed the order of the given options and added wording and a confirmation prompt when Entware is set to be removed.
Will be out with the next update. Thanks for bringing this up @rlj2

While removing Entware seemed harsh and unforgiving, keep in mind that at the time of coding Diversion years ago, there were few third party apps available. And even fewer that relied on Entware being installed.
Since Diversion installs Entware by default, I added the uninstall Entware option. AFAIK no other third party script offers the uninstall option. And only amtm or Diversion have an Entware install function.

 

[thelonelycoder]

OK DD-WRT users There's some development going on over in their forums.
If you're interested, follow my adventure at this weird place with a confusing website, an outdated forum software and a never ending beta firmware release cycle.

DD-WRT :: View topic - Diversion Router Ad-Blocker potential for DD-WRT firmware

I am not abandoning Asuswrt-Merlin. This is just a glance over the fence and see what's what and if it would work to fork some of the Diversionized concepts to an alien (to me) platform.

 

[PeterR]

OK DD-WRT users There's some development going on over in their forums.
If you're interested, follow my adventure at this weird place with a confusing website, an outdated forum software and a never ending beta firmware release cycle.

DD-WRT :: View topic - Diversion Router Ad-Blocker potential for DD-WRT firmware

I am not abandoning Asuswrt-Merlin. This is just a glance over the fence and see what's what and if it would work to fork some of the Diversionized concepts to an alien (to me) platform.

Takes me back to the WRT54G days with that 'BrainSlayer' guy - seems like it's in a time warp.

 

[Khadanja]

Trying to add this host list and getting below error. Is there any other way of adding this host list?

  !  Press Enter to acknowledge getting hosted blacklist
 https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
###################################################################################################################################################################################################################################### 100.0%
 Error  hosted blacklist is above the limit of 4000 domains.
 Consider to use a larger blocking list in  b
 to not have to blacklist so many domains.
Keeping existing blacklist

 

[thelonelycoder]

Trying to add this host list and getting below error. Is there any other way of adding this host list?

  !  Press Enter to acknowledge getting hosted blacklist
https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
###################################################################################################################################################################################################################################### 100.0%
Error  hosted blacklist is above the limit of 4000 domains.
Consider to use a larger blocking list in  b
to not have to blacklist so many domains.
Keeping existing blacklist

Add it to the blocking list instead in b. Customize existing type.
The blacklist is for a small number of extra domains you individually want added. For bulk hosts lists (which yours is) add it to b.

 

[Khadanja]

Add it to the blocking list instead in b. Customize existing type.
The blacklist is for a small number of extra domains you individually want added. For bulk hosts lists (which yours is) add it to b.

Using which option 6. Alternate blocking list for specified clients?
Error Enable blocking list fast switch fs
first in b , 1.

 

[Khadanja]

o

Using which option 6. Alternate blocking list for specified clients?
Error Enable blocking list fast switch fs
first in b , 1.

ok got it,b,1,2. What does fs do and how to find which list is in use? I see 2 there now and what does enable list mean?

 1. Select a predefined list
 2. Customize hosts list
 3. Enable blocking list fast switch  fs

 Enter your selection: [1-3 e=Exit] 2
____________________________________________________

 Customizable hosts list:

 1: https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
 2: https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
____________________________________________________

 1. Add hosts list
 2. Remove hosts list
 3. Disable hosts list
 4. Enable hosts list

 

[chongnt]

o

ok got it,b,1,2. What does fs do and how to find which list is in use? I see 2 there now and what does enable list mean?

 1. Select a predefined list
2. Customize hosts list
3. Enable blocking list fast switch  fs

Enter your selection: [1-3 e=Exit] 2
____________________________________________________

Customizable hosts list:

1: https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
2: https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
____________________________________________________

1. Add hosts list
2. Remove hosts list
3. Disable hosts list
4. Enable hosts list

In this case both lists are used. You have the option remove unused list; or keep the list but disabled it. It is very flexible. You can go through the manual list from here for more details:

Menu header - Diversion

diversion.ch

 

[underdose]

OK DD-WRT users There's some development going on over in their forums.
If you're interested, follow my adventure at this weird place with a confusing website, an outdated forum software and a never ending beta firmware release cycle.

DD-WRT :: View topic - Diversion Router Ad-Blocker potential for DD-WRT firmware

I am not abandoning Asuswrt-Merlin. This is just a glance over the fence and see what's what and if it would work to fork some of the Diversionized concepts to an alien (to me) platform.

I knew you'd get back to that unfinished business with DD-WRT, Mr. Lonelycoder

Even though I'm not a DD-WRT user anymore, it's good to know if comes a time to switch back to DD-WRT I'm not gonna fiddle with your code for a whole week to get Diversion working again

I think I still have the files by the way. If you'd like to take a look at them again just let me know.

 

[thelonelycoder]

I knew you'd get back to that unfinished business with DD-WRT, Mr. Lonelycoder

Even though I'm not a DD-WRT user anymore, it's good to know if comes a time to switch back to DD-WRT I'm not gonna fiddle with your code for a whole week to get Diversion working again

I think I still have the files by the way. If you'd like to take a look at them again just let me know.

They're safely stored away here, with your detailed README.docx !
Did you find your way back into the fold because of the DD-WRT mess?

I again looked into Tomato briefly, but they have already an ad-blocker that is actively developed.

Tomato Firmware

Discussion of Tomato Firmware and any router supported by it.

www.linksysinfo.org