What does HackerNews think of hosts-blocklists?
Automatically updated, moderated and optimized lists for blocking ads, trackers, malware and other garbage
It's also bizarre that some pretty major countries haven't been researched that are probably significant contributors to legitimate Internet traffic (UK, AUS, India etc.)
Use this for network wide blocking of all sorts of virtual garbage. Not only for safari, but all your locally connected devices.
They focus not only on tracking but also malware prevention, where possible via dns filtering.
Pi-Hole still does not properly support wildcard filtering, only via regex but that is not really efficient (requires tons of resources).
This is an excellent merged blocklist, with public whitelist (oisd is fully closed, no insight in what is whitelisted and why, also causing more false positives..)
But at least I'm ultimately in control of what gets blocked, unlike when Apple decides what's best for you.
I went a saner route, and used dnsmasq and a blocklist[1] updated nightly via cron. Dnsmasq in turn queries Stubby that talks to uncensoreddns.org via DNS-over-TLS. Boom, DoT on my entire LAN.
They have a public whitelist and updates are pushed on a daily basis.