>>62Just block third-party requests and JS by default in your browser, it's much harder to write down a blacklist of everything bad in the world than to write a whitelist of sites you use and their permissions. The latter changes rarely while the former changes constantly; not that it would ever be complete in the first place. You can use the same approach on the network level, but it'll be much more involved because you probably won't have a quick way to add exceptions to your proxy unlike with something like uMatrix. But the focus on ads makes it seem to me like you aren't really looking for network level stuff but only browsers anyway.