Slashdot Mirror
Domain: hosts-file.net
Stories and comments across the archive that link to hosts-file.net.
Comments · 5,189
-
HOSTS files = Superior (2 AdBlock &/or DNS alo
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED (and you own one already, & populating them from reputable & reliable sources is FREE too (only takes work with a text editor really)):
1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
2.) Adblock blocks ads (not anymore apparently, lol:
Adblock Plus To Offer 'Acceptable Ads' Option
http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )
in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)
Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!
6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.
7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://winhelp2002.mvps.org/hosts.htm
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online -
HOSTS files = Superior (2 AdBlock &/or DNS alo
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:
1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
2.) Adblock blocks ads (not anymore apparently, lol:
Adblock Plus To Offer 'Acceptable Ads' Option
http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )
in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)
Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!
6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.
7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://winhelp2002.mvps.org/hosts.htm
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://ddanchev.blogs -
HOSTS files = Superior (2 AdBlock &/or DNS alo
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:
1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
2.) Adblock blocks ads (not anymore apparently, lol:
Adblock Plus To Offer 'Acceptable Ads' Option
http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )
in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)
Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!
6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.
7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://winhelp2002.mvps.org/hosts.htm
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://ddanchev.blogs -
Hosts file = Better than AdBlock
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:
1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
2.) Adblock blocks ads (not anymore apparently, lol:
Adblock Plus To Offer 'Acceptable Ads' Option
http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )
in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)
Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!
6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.
7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://ddanch -
APK DROPS "THE BOMB" ON ADBLOCK &/or DNS!
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:
1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
2.) Adblock blocks ads (not anymore apparently, lol:
Adblock Plus To Offer 'Acceptable Ads' Option
http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )
in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!
(Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!
6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.
7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://ddanc -
Here's a few good ones (premade)... apk
6 good sources for "premade" HOSTS files from reputable & reliable sources online:
http://hosts-file.net/?s=Download
http://winhelp2002.mvps.org/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000* There's others out there, around a dozen more I use, but they're not updated as often as those above... & some are lists for DNS server DNSBL lists, which I have written programs for converting those over to HOSTS format here over time (they aren't updated that often though).
However, those in my small list above are tiny (thus, they won't "hassle" w/ the DNS local clientside cache in Windows' deficiencies I noted in my other posts here), & those in the list above are kept up to date quite often, usually weekly (some daily)...
They're reputable & reliable in that list above, & can "get you started".
APK
P.S.=> I integrate them ALL (& many others from my now 20++ sources) into 1 large file here with a Python system (multiplatform) lately, that alphabetizes the entries, filters out exception sites I don't want blocked, & "normalizes/deduplicates" repeat entries (which bloat the file needlessly)...
... apk
-
Glad it's working 4U (you'll like this I think)
Based on your success using a HOSTS file for added speed - you can also get more "layered-security"/"defense-in-depth" added as well, & here are some of the sites I use online to populate my HOSTS file vs. various online threats (all current, updated regularly, & reputable):
http://hosts-file.net/?s=Download
http://winhelp2002.mvps.org/hosts.htm
http://someonewhocares.org/hosts/
http://www.malwaredomainlist.com/hostslist/hosts.txt
https://spyeyetracker.abuse.ch/monitor.php
https://zeustracker.abuse.ch/monitor.php?filter=all
http://amada.abuse.ch/palevotracker.php
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000
http://www.safer-networking.org/en/download/
http://www.malwareurl.com/
http://mirror1.malwaredomains.com/files/
http://hostsfile.org/hosts.html
http://doc.emergingthreats.net/bin/view/Main/HoneywallSamples* There you go - that'll "get you started" on the road to not only FASTER websurfing, but also SAFER websurfing as well...
APK
P.S.=> Now, as far as "integrating" them into your HOSTS file?
Those sites offer various tools for that (I have built my own over time & you can even use tools like MS-Access for the hard part, deduplication for unique entry data via SELECT DISTINCT queries if need be, but I think the best tool offered on 1 of those sites is a PERL deduplication script (you have to have PERL installed though) as far as the tools offered by others from those sources.
Thus, You may wish to look into the FREE tools offered on those sites, if not compare them as well, & just for the purposes of import, deduplication/normalization, + more as well!
So - enjoy & continued good luck to you (as well as "salutations" for trying a custom HOSTS file & experiencing what you have, thusfar)...
... apk
-
GET MORE THAN THAT FREE (Using HOSTS files)
By far, & so can anyone else in 2 ways:
1.) Blocking out adbanners (which have been known to serve up malware many times in the past 7++ yrs. or more, no less)
&
2.) Hardcoding your favorite sites into it (so you avoid DNS lookups that take longer than 30-60ms or more to send back a host-domain name resolved to IP address, & also from possibly downed, OR "dns-poisoned" misdirected DNS servers)
Nice part is, it didn't cost ME "billions of dollars" to get a HELL OF A LOT MORE SPEED BACK FOR MY MONIES I PAY OUT TO BE ONLINE (as well as a hell of a lot better "layered security" to go with it), using HOSTS files...
APK
P.S.=> And, they're FREE, & data for them is as simple as pinging your fav. sites for their IP address (so you can LOCALLY "Self-Resolve" the host-domain name to IP address equation), & blocking adbanners has data widely available for it also (in addition to blocking out KNOWN bogus sites that serve up malware) for security too, such as this list of them:
http://hosts-file.net/?s=Download
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000
http://mirror1.malwaredomains.com/files/
http://someonewhocares.org/hosts/
http://www.malwareurl.com/
https://spyeyetracker.abuse.ch/monitor.php
https://zeustracker.abuse.ch/monitor.php?filter=online
http://winhelp2002.mvps.org/hosts.htm
http://hostsfile.org/hosts.html
http://www.safer-networking.org/en/download/By this point in time, since 1997 with lists of my own? I have 1.6++ million bogus sites/servers/hosts-domains, adbanner servers, & far more that's "not good for your speed OR security online" blocked-out, & my DSL connection runs MORE like a GOOD CABLE CONNECTION instead for websurfing, easily!
... apk
-
THIS is how (a better way)
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
2.) Adblock blocks ads in only 1-2 browser family, but not all (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
-
I block their C&C servers via HOSTS files
HOSTS files, combined with firewalls rules tables (for IP address based ones).
It's easy enough to do, the data's out there by the TRUCKLOAD on Conficker and many other known botnets, sites/servers/hosts-domains that serve up malware-in-general (virus/spyware etc./et al).
Here are 15 or so that I use for anyone that's interested in protecting themselves in this manner:
---
http://www.mvps.org/winhelp2002/hosts.htm
http://hostsfile.org/hosts.html
http://someonewhocares.org/hosts/
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malware.com.br/lists.shtml
http://hosts-file.net/?s=Download
http://www.malwaredomains.com/
http://www.safer-networking.org/en/download/index.html (Spybot Search & Destroy has an IMMUNIZE feature that works on HOSTS files here)
http://safeweb.norton.com/buzz
---
HOSTS files are the main route I took because they offer not just security benefits, but also speed benefits (very noticeable ones), & even anonymity ones to an extent (vs DNSBL)
HOSTS files, imo @ least, are even easier to deal with than a firewall (software OR router based) rules table if you ask me!
I did so again - Because of layered security they offer (combinations of Norton DNS (dnsbl filtering DNS vs. malware online threats & botnets), & firewall rules tables)) AND SPEED GAINS POSSIBLE TOO, via an easily edited route in a text file (which is all HOSTS are, a filter that works at the fastest & most efficient level there is, the IP subsystem).
I.E -> HOSTS are EASY to edit as well with any text editor also (which, face it, anyone can handle using) to add or even remove (or # symbol comment off temporarily even) data from its internal records list.
It works & on the SIMPLEST PRINCIPLE THERE IS for security: You can't get burnt if you don't go into the malware/botnet kitchen!
(I do so based on the principle of "layered security", especially vs. online threats...)
E.G.-> So, if one protective scheme fails, the others is there to kick in to protect you!
(They all work in combination w/ one another seamlessly-transparently... so, it's basically the same idea I suppose, as folks putting deadbolts, door handle knob locks, & chain locks on a door for 'triple layer security' really!)
It works & on the SIMPLEST PRINCIPLE THERE IS for extra speed, & bandwidth YOU PAY FOR OUT OF POCKET also:
See, nicest part about HOSTS files though, is that it's easy to insert other things (say for blocking adbanners) that speed you up online (via hardcoding your fav. sites into it, host-domain name to IP Address resolved, ea
-
Custom HOSTS files can achieve the same
Here's an EASIER trick, with a FREE "Tool" you already own, that's only a single text file filter for your IP stack: A custom HOSTS file, that yields the same results!
(I think it'd be interesting to see this service, COMBINED w/ what I am about to speak of in custom HOSTS files usage, and benefits to the end-user).
"According to the article, the speed boost comes from two things" - by Anonymous Coward on Wednesday June 08, @12:42AM (#36371418)
The gains HOSTS files offer in both speed, & security, are twofold:
---
FOR ADDED SPEED:
1.) Blocks out adbanners & the lag they introduce into webpage loads/downloads for consumption
2.) Hardcoding in your favorite website (to avoid DNS roundtrip lookup & result return time)
---
FOR ADDED SECURITY:
1.) Blocks out KNOWN malicious sites/servers/hosts-domain names
2.) Protection vs. DNS issues (such as the "Kaminsky flaw", or downed/compromised DNS servers that have been "redirect poisoned")
---
They work, they're free, and you can obtain one easily!
(OR, just combine ALL of the ones listed in my 'p.s.' below, & a db import of the file using a SELECT DISTINCT query can do it for example, as a way, or mvps.org offers a tool called HOSTSMAN that does it also (there are others like it as well, I designed one, & so have others)).
You already can do this yourself since any OS that uses a BSD derived IP stack already has one (even ANDROID phones), easily, & populate the custom HOSTS file yourself from the sources noted above!
(I consolidate them all into a single de-duplicated/normalized version, that which currently blocks out 1,429,303++ KNOWN bad sites/servers/hosts-domains, AND, speeds me up VERY noticeably (via blocking out adbanners, a possible threat for years now in malicious code in them & a bandwidth + speed hog OR, by 'hardcoding in' my favorite sites (to bypass DNS lookup & return roundtrip time) also))
APK
P.S.=> Here are some reputable, & reliable sources for said HOSTS file security data (as well as prebuilt HOSTS files for instant download & usage on your parts):
http://safeweb.norton.com/buzz
http://doc.emergingthreats.net/bin/view/Main/HoneywallSamples
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malwaredomains.com/
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
http://www.malware.com.br/lists.shtml
https://spyeyetracker.abuse.ch/monitor.php
https://zeustracker.abuse.ch/monitor.php?filter=online
http://someonewhocares.org/hosts/
http://www.mvps.org/winhelp2002/hosts.htm
... apk
-
Do the same w/ a custom HOSTS file
Here's an EASIER trick, with a FREE "Tool" you already own, that's only a single text file filter for your IP stack: A custom HOSTS file!
"They offer a security product for websites, and in the process of designing it so that it didn't add much latency, they inadvertently made it into a CDN that speeds things up. There. Now we all know what the trick is." - by Anubis IV (1279820) on Wednesday June 08, @12:56AM (#36371492)
The gains it offers in both speed, & security, are twofold:
---
FOR ADDED SPEED:
1.) Blocks out adbanners & the lag they introduce into webpage loads/downloads for consumption
2.) Hardcoding in your favorite website (to avoid DNS roundtrip lookup & result return time)
---
FOR ADDED SECURITY:
1.) Blocks out KNOWN malicious sites/servers/hosts-domain names
2.) Protection vs. DNS issues (such as the "Kaminsky flaw", or downed/compromised DNS servers that have been "redirect poisoned")
---
They work, they're free, and you can obtain one (or combine ALL of these, a db import of the file using a SELECT DISTINCT query can do it for example, as a way, or mvps.org offers a tool called HOSTSMAN that does it also (there are others like it as well, I designed one, & so have others)).
You already can do this yourself since any OS that uses a BSD derived IP stack already has one (even ANDROID phones), easily, & populate the custom HOSTS file yourself from the sources noted above!
(I consolidate them all into a single de-duplicated/normalized version, that which currently blocks out 1,429,303++ KNOWN bad sites/servers/hosts-domains, AND, speeds me up VERY noticeably (via blocking out adbanners, a possible threat for years now in malicious code in them & a bandwidth + speed hog OR, by 'hardcoding in' my favorite sites (to bypass DNS lookup & return roundtrip time) also))
APK
P.S.=> Here are some reputable, & reliable sources for said HOSTS file security data (as well as prebuilt HOSTS files for instant download & usage on your parts):
http://safeweb.norton.com/buzz
http://doc.emergingthreats.net/bin/view/Main/HoneywallSamples
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malwaredomains.com/
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
http://www.malware.com.br/lists.shtml
https://spyeyetracker.abuse.ch/monitor.php
https://zeustracker.abuse.ch/monitor.php?filter=online
http://someonewhocares.org/hosts/
http://www.mvps.org/winhelp2002/hosts.htm
... apk
-
My HOSTS updates "automagically" every 15 min.
Via a PyThon script, that does the following:
---
1.) Removes duplicates/normalizing the HOSTS file
2.) Alphabetizes it
3.) Changes the larger & slower 127.0.0.1 loopback adapter std. address MOST hosts files use typically, opting for the smaller & FASTER read in (and with no loopback, pure "blackholing" only) 0.0.0.0 address!
4.) It also removes any # comments that bloat hosts, along with "trailing nulls or blanks" many have that additionally bloat the HOSTS file.
---
Once she's read up into the DNS client cache (must turn this off for large ones like mine, currently @ 1,017,970++ entries strong), OR, into the local DISKCACHE (since it's just a filtering file for the IP Stack)?
She's fast as nobody's business!
APK
P.S.=> That's how I do it, & all that, & from these reputable & reliable sources for HOSTS file data vs. adbanners &/or KNOWN bad sites/servers/hosts-domain names:
http://www.malwaredomains.com/
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
http://someonewhocares.org/hosts/
http://www.mvps.org/winhelp2002/hosts.htm
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN
bad servers blocked):http://www.safer-networking.org/en/download/index.html
& it works... even many slashdotters use them, by the by, & my list of 20++ points in favor of HOSTS files quotes their results as well (for some "peer evidences" from the likes of your fellow posters on this website in fact, in addition to myself).
... apk
-
There's MANY valid sources you can use
http://www.malwaredomains.com/
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
http://someonewhocares.org/hosts/
http://www.mvps.org/winhelp2002/hosts.htm
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN
bad servers blocked)http://www.safer-networking.org/en/download/index.html
---
"You ARE a spamming nutbag" - by drinkypoo (153816) on Thursday May 26, @01:21PM (#36252958) Homepage
Oh, really? Do you have your:
---
1.) A PHD in Psychiatry to your name/credit?
2.) A license to practice it professionally??
3.) Years-to-Decades of professional experience in the field of psychiatry???
4.) A formal examination of myself in a professional environs to make your "instant snap prognosis" of my alleged mental state according to you, the "/. SiDeWaLk PsYcHo-AnALySt"????
---
No to ALL/EACH of the above????? So much for THAT "ad hominem" effete attempt on your part directed MY way then, eh??????
I.E.-> You personally just don't have the credentials to make your assessments in calling me a nutbag, period. In fact, you're libelling me in doing so... don't you KNOW that?????? There's LAWS against it you fool!
Instead - Why don't you attempt to attack the 20 points in favor of HOSTS files I put out??????
---
Oh, that's right - YOU ALSO SAID THIS:
"although you're right about hosts files" - by drinkypoo (153816) on Thursday May 26, @01:21PM (#36252958) Homepage
That's right I am RIGHT... always am!
APK
P.S.=> Take your pick... I just happen to consolidate them ALL, into 1 file here (via a PyThon script engine that does so every 15 minutes, removing duplicates/normalizing it, and alphabetically sorting them also, & changing the larger + slower 127.0.0.1 loopback address (slower due to loopback ops) to the faster & smaller + most compatible 0.0.0.0 blackhole address instead)... apk
-
HOSTS files can do the same... apk
See subject-line. You already have an alternate viable working solution vs. this FireFox ONLY browser addon: It's called your HOSTS file, and it works on ALL webbrowsers (in fact, ANY webbound program, e.g.-> External to webbrowser email programs like Outlook &/or Outlook Express, among others)!
So, if you're able to edit a text file, which most folks CAN & have done before? You can work with it, easily.
APK
P.S.=> It's a matter of editing/adding to a simple text file for HOSTS files, from reputable/reliable sources, such as these:
---
http://www.safer-networking.org/en/download/index.html
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
https://spyeyetracker.abuse.ch/monitor.php
https://zeustracker.abuse.ch/monitor.php?filter=online
http://someonewhocares.org/hosts/
http://www.mvps.org/winhelp2002/hosts.htm
---
(The last one also has an EASY TO USE "point-N-click" GUI easy tool to help manage the HOSTS file, called HOSTSMAN, which allows for auto-update as well, very little user interaction required... & it removes duplicate entries and keeps you updated as well, "automagically"!)
Yes, a simple text file which YOU, the end user, has COMPLETE control over, which is all the HOSTS file really is, a text file based filter for the IP Stack running in Ring 0/RPL 0/kernel mode (PnP driver design in MacOS X & Windows case - not 100% sure of Linux, but probably similar & kick "on" fully, on demand by usermode code programs) for the best in speed/efficiency over this add on also, since the addon runs in Ring 3/RPL 3/usermode... apk
-
And this protects you from basically nothing?
"And this protects you from basically nothing except some advertising." - by Anonymous Coward on Thursday December 30, @09:05PM (#34717748)
You're WRONG... see below:
---
HACKERS USE ADBANNERS ON MAJOR SITES TO HIJACK YOUR SYSTEM: -> http://www.wired.com/techbiz/media/news/2007/11/doubleclick
THE NEXT AD YOU CLICK MAY BE A VIRUS: -> http://it.slashdot.org/story/09/06/15/2056219/The-Next-Ad-You-Click-May-Be-a-Virus
NY TIMES INFECTED WITH MALWARE ADBANNER: -> http://news.slashdot.org/article.pl?sid=09/09/13/2346229
MICROSOFT HIT BY MALWARES IN ADBANNERS: -> http://apcmag.com/microsoft_apologises_for_serving_malware.htm
2 MAJOR AD NETWORKS FOUND SERVING MALWARE: -> http://tech.slashdot.org/story/10/12/13/0128249/Two-Major-Ad-Networks-Found-Serving-Malware
ISP's INJECTING ADS AND ERRORS INTO THE WEB: -> http://it.slashdot.org/it/08/04/19/2148215.shtml
ADOBE FLASH ADS INJECTING MALWARE INTO THE NET: http://it.slashdot.org/article.pl?sid=08/08/20/0029220&from=rss
---
By blocking out adbanners, not only do you get more SPEED, but... also more SECURITY, against malwares that have been shown to exist in some adbanners maliciously embedded & obfuscated code in javascript.
Additionally, by my populating my hosts file, nearly hourly, from reputable sites for that vs. KNOWN BAD SITES/SERVERS?
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)I can't get burned, if I can't go into the KNOWN BAD SITES' "malware kitchen"...
(Very simple, & it works!)
"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)
FROM http://tech.slashdot.org/comments.pl?sid=1907528&cid=34532122
APK
P.S.=> Ah, I just gotta say it, as per my usual: "too, Too, TOO EASY", just '2EZ'... apk
-
You're going to eat your words YET AGAIN
"For your magical woobie to work you will not only have to have EVERY site you visit that MAY OR MAY NOT be infected at that very moment in your magical HOPES file, but every single site they link to such as ad servers and your list has to be accurate to the minute or it is nothing but a woobie" - by hairyfeet (841228)
on Wednesday December 22, @02:24AM (#34638726)That "woobie" IS actually "accurate to the minute" here, & 915,000 unique entries of KNOWN BAD SITES/SERVERS/HOST-DOMAIN NAMES... simply because I update it from sites that contain information on bad sites/servers/hosts-domain names, & they update 4 or more times a day themselves:
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500So, as per usual? So much for that from you!
---
"You have bet your ENTIRE existence on a 20 year old tech nobody uses anymore!" - by hairyfeet (841228) on Wednesday December 22, @02:24AM (#34638726)
I think you had best check with places like mvps.org from my reputable sources list above, & their forums people as a counter-example... there are 1000's of them there alone & there are other sites like they too.
Then again also? There are testimonials like this one too:
"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)
FROM http://tech.slashdot.org/comments.pl?sid=1907528&cid=34532122
To further substantiate this for me (and as I said before here -> http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 I can produce more like that quoted testimonial above)... he, like myself & many others, due to using hosts files, good sense, & layered security concepts, DO NOT GET MALWARE (which blows your points here http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 away, with ease, right at their foundations!)
You still have not "debunked & disproved" my 20++ points in favor of HOSTS files here either:
http://it.slashdot.org/comments.pl?sid=1916240&cid=34607890
Have you? Nope.
(Instead, all we get from you is easily disproven B.S. (via testimonials alone even), and foaming at the mouth hysterically utt
-
Time 4 U2 EAT YOUR WORDS HERE too... apk
"For your magical woobie to work you will not only have to have EVERY site you visit that MAY OR MAY NOT be infected at that very moment in your magical HOPES file, but every single site they link to such as ad servers and your list has to be accurate to the minute or it is nothing but a woobie" - by hairyfeet (841228)
on Wednesday December 22, @02:24AM (#34638726)That "woobie" IS actually "accurate to the minute" here, & 915,000 unique entries of KNOWN BAD SITES/SERVERS/HOST-DOMAIN NAMES... simply because I update it from sites that contain information on bad sites/servers/hosts-domain names, & they update 4 or more times a day themselves:
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500So, as per usual? So much for that from you!
---
"You have bet your ENTIRE existence on a 20 year old tech nobody uses anymore!" - by hairyfeet (841228) on Wednesday December 22, @02:24AM (#34638726)
I think you had best check with places like mvps.org from my reputable sources list above, & their forums people as a counter-example... there are 1000's of them there alone & there are other sites like they too.
Then again also? There are testimonials like this one too:
"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)
FROM http://tech.slashdot.org/comments.pl?sid=1907528&cid=34532122
To further substantiate this for me (and as I said before here -> http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 I can produce more like that quoted testimonial above)... he, like myself & many others, due to using hosts files, good sense, & layered security concepts, DO NOT GET MALWARE (which blows your points here http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 away, with ease, right at their foundations!)
You still have not "debunked & disproved" my 20++ points in favor of HOSTS files here either:
http://it.slashdot.org/comments.pl?sid=1916240&cid=34607890
Have you? Nope.
(Instead, all we get from you is easily disproven B.S. (via testimonials alone even), and foaming at the mouth hysterically utt
-
Easy to beat with a custom HOSTS file
"1) Russian criminals have control over the wikileaks.org and wikileaks.info domains and are distributing malware. The current real wikileaks website is wikileaks.ch." - by Anthony Mouse (1927662) on Saturday December 18, @08:04PM (#34603730)
ping wikileaks.ch IS YOUR FRIEND!
Enter the result of that into your custom HOSTS file (Windows: %WinDir%\system32\drivers\etc OR on LINUX: root/etc OR ON ANDROID PHONES: by mounting the system mountpoint first, w/ read + WRITE ability, & then using the SDK tool ADB to PUSH the new HOSTS file into the etc folder there, overwriting the stock-oem model)
E.G.-> (from MY "ping" result, that would go into a HOSTS file for this):
178.21.20.9 wikileaks.ch
PUT THAT INTO YOUR CUSTOM HOSTS FILE (after pinging wikileaks.ch, because the IP address you come up with MAY be different than that which I come up with here).
That's doing a "whitelisting" in your HOSTS file, w/ the proper IPAddress - to - HOST/DOMAINName resolution, so you reach that site (and, you avoid DNS request log tracking in doing so also, bonus, because you NEVER USE THE ISP/BSP (or other) DNS server, period).
---
"2) Spamhaus has been telling people about (1). 3) The Russian criminals are now retaliating by using their botnets to DDoS Spamhaus under the flag of AnonOps." - by Anthony Mouse (1927662) on Saturday December 18, @08:04PM (#34603730)
Hey - They're easy to beat too (Russian criminals), & also by using a HOSTS file...
Albeit, this time, NOT FOR WHITELISTING A SITE, but, rather for "blacklisting" the sites/servers they use or redirect you to, for loading malware onto your systems!
(Between that, & using NoScript or turning off javascript period, you ARE PROTECTED (you really only need it for database accesses when you come down to it, to do "real things" (not playtime stuff, or eyecandy) usually, after all)).
APK
P.S.=> Reputable, reliable, & regularly updated sources for blacklisting data for a HOSTS file are as follows:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
-
HOSTS files are superior to AdBlock &/or DNS a
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
-
HOSTS files are superior to AdBlock &/or DNS
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
-
HOSTS files are superior to AdBlock & DNS even
20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
-
With a HOSTS file? You don't NEED to do that...
"Reading the report, it sounds like they were just testing the browsers' databases of known malware/phishing sites" - by gman003 (1693318) on Wednesday December 15, @03:51PM (#34565790)
Per my subject-line above? With a GOOD UP-TO-DATE HOSTS FILE?? You don't even NEED to do that!
I update mine daily, from these reliable & reputable sources (for blocking out KNOWN bad sites/servers/host-domain names etc.):
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhacker others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500---
So, IF/WHEN you have a HOSTS file that has up to date blocking data in it? There's really no real need to do "browser based checks" of URL's, other than for "layered-security" purposes (which isn't a BAD THING TO DO, & it's the "current trend" for better security online).
Besides: IE, FireFox, and Opera ALL have methods for blocking out known bad sites already:
---
Opera has URLFILTER.INI (Spybot S&D populates this, alongside the Opera community doing updates to it too)
FireFox has an analog to Opera's filter file (which is what SpyBot S&D populates alongside a HOSTS file too vs. known bad sites)
IE has "restricted zones"
---
Still - the folks @ MS doing this in IE9 (which I use here)? Not a bad thing at all, for "layered-security"...
APK
P.S.=> Even the folks @ WIKIPEDIA aren't against blacklists like HOSTS:
---
PERTINENT QUOTE/EXCERPT (from -> http://www.theregister.co.uk/2010/12/16/wikileaks_mirror_malware_warning_row/ )
"we are in favour of 'Blacklists', be it for mail servers or websites
---
Why? Well, because they work... especially for layered security online... apk
-
Verifying adshufffle.com I used this source
http://hosts-file.net/default.asp?s=adshufffle.com
It's (adshufffle.com) marked as bogus & in the HpHosts blocklist there @ HPHOSTS (see for yourself)...
Yes - it's a KNOWN bad one @ this point & that's 1 of a few sources I use for "verifies" of what does go into my HOSTS file!
So, yes - I have it listed in my custom HOSTS file as a blacklisted domain/host.
APK
P.S.=> I also store adshuFFle.com (2 f's, not 3 like the above one you noted) in my HOSTS file as well, as I noted in my other reply to you, as it serves adbanners, & per this article & this list?
This article today we're replying to, and these from the past:
HACKERS USE ADBANNERS ON MAJOR SITES TO HIJACK YOUR SYSTEM: -> http://www.wired.com/techbiz/media/news/2007/11/doubleclick
THE NEXT AD YOU CLICK MAY BE A VIRUS: -> http://it.slashdot.org/story/09/06/15/2056219/The-Next-Ad-You-Click-May-Be-a-Virus
NY TIMES INFECTED WITH MALWARE ADBANNER: -> http://news.slashdot.org/article.pl?sid=09/09/13/2346229
MICROSOFT HIT BY MALWARES IN ADBANNERS: -> http://apcmag.com/microsoft_apologises_for_serving_malware.htm
ADBANNERS SLOW DOWN THE WEB: -> http://tech.slashdot.org/article.pl?sid=09/11/30/166218
I don't trust them, any of them, & they slow me down + track me too? NO thanks! apk
-
I update my custom HOSTS file once a day here
Once a month! Do you really think that's enough? DNS records change all the time. Not all of them, but enough to make that list obsolete in a couple of days." - by icebraining (1313345) on Friday December 10, @04:13AM (#34512138) Homepage
Well - For blocking out known bad sites, that's "adequate" (that's mvps.org's schedule though - I do it FAR MORE FREQUENTLY, as far as blocking of sites that harbor malware exploits)...
However, the HOSTS file can be used to do more than just that though in "hardcoding in" your favorite websites IPAddress - to - domain/host name equation for more speed, & blocking out known bad sites is a part as I noted it above... so is blocking out adbanners (good OR BAD ones http://apcmag.com/microsoft_apologises_for_serving_malware.htm).
(See, icebraining - You're ONLY hitting on 1 use of a HOSTS file only here, in noting hardcoding the "IPAddress-to-Domain/Host Name resolution" into them for more speed, which also gives you the speed advantage of avoiding DNS request roundtrip time, & also the security advantage of avoiding DNS request logs tracking too - HOWEVER, custom HOSTS files are also a great layer of defense vs. being malware attacked by malicious scripts known bad sites have too).
Personally, I use mvps.org's lists for update vs. adbanner servers, & also known bad sites... I use them, alongside MANY others also (see below):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)And yes: Even SLASHDOT &/or The Register help!
(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhacker others online that is... not ALL do!)).
2 examples thereof in the past I have used, & noted it there, are/were:
http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500For blocking out adbanners &/or known bad sites? I do updates from the above sources, everyday (working on one now as I write this)
---
NOW: For more speed to my favorites for my top 250 "favorite sites" (like this one)?
The same program I wrote that does this as well:
1.) Removes duplicate HOSTS files entries
2.) Trims trailing blanks (which a SELECT * DISTINCT ORDER BY query leaves in say, Access, because no VARCHAR exists (like mySQL, Oracle, SQLServer, DB2 etc. have))
3.) Alphabetizes the entries in my HOSTS file
4.) Changes the blocking IP address used from 127.0.0.1 (std./stock loopback adapter address, slowest & largest read of the lot here), to 0.0.0.0 (better in speed/size for reads, & just as compatible as the loopback), to 0 (smallest & fastest of the lot, but, only works in Windows 2000 SP#2 onwards/XP/Server 2003 (used to in VISTA up to 12/09/2008 MS "Patch Tuesday", & it no longer does after that on Windows VISTA/Windows Server 2003/Windows 7))
My custom HOSTS updating program (APK Hosts File Grinder 4.0++) also "Pings" my list of my fav. sites (read up from a text file into a listbox) to keep them curren
-
They can't touch me, & here is HOW/WHY
From the source article, I obtained their server's domain/hostnames and nameservers, which I now have added to my custom HOSTS file... & blocked out, thus:
0.0.0.0 greatfull-toolss.ru
0.0.0.0 ns1.reg.ru
0.0.0.0 ns2.reg.ru
0.0.0.0 greatfull.ru
0.0.0.0 ns1.arbusi-host.net
0.0.0.0 ns2.arbusi-host.net
0.0.0.0 hellcomeback.ruThey're not going to get to ME, because I cannot get to they now... & what I can't touch, I cannot be "burned" by, simple!
HOSTS as blacklists, work! Some evidences & cases why you may be interested in implementing such protective (and speed gaining features too) measures:
---
15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download -
metrix007 disprove these points then on HOSTS
"Kid, you have no idea what you're talking about... You are strongly misinformed on several points. I can't be bothered to respond to you, (i.e. feed the troll) because I don't think it would be worth my time. You're obsessed, and not interested in rational discussion - by metrix007 (200091) on Monday December 06, @07:03AM (#34458496)
Ok, you FINALLY came back in, & NO: I am TRULY interested in "rational discussion", not avoiding it (as you obviously are with your 2 trollish replies here in this thread), so with that said? Disprove each of these 15 points on HOSTS files then:
15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.ab -
Thanks for the info.: Why? See inside... apk
Thanks for supplying the bogus domains information. I checked on yourisp.ru, and sure enough - a known bogus malware domain/host name. It's blocked out here now, alongside payment8ltd.net, & how? Here is HOW & WHY:
15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)8.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
9.) AdBlock & DNS servers are program
-
I never see their crap. How? Block spammer domains
What blocks off known bogus sites/servers or entire hostnames/domains better than anything (because it's not a program, and because it's just a filter that operates @ the IP Stack level, and covers ALL your webbound programs, plus mine at least gets updated from reputable & reliable sources, daily): a custom HOSTS file.
You've also already got one, whether you all know it or not, & it's just a matter of either downloading a prebuilt on (sources are below), or filling one in yourself, and yes, they work even vs. spam mail (& better than adblock does, because that only covers browsers it's designed for (maybe 1-3 of them), but not external HTML + script based external email programs, like Outlook Express/FULL Outlook)).
15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spyb -
At least you were "modded up" for HOSTS use... apk
15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK:
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):
http://www.mvps.org/winhelp2002/hosts.htm [mvps.org]
http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)8.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
9.) AdBlock & DNS servers are programs, and subject to bugs programs can get. Hosts files are merely a filter and not a program, thus not subject to bugs of the nature just discussed.
10.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs.
11.) HOSTS files are E
-
I've written such a program, as have others
"All you have to do now is automate the process of updating it. You could have some sort of program that acted both as a client and a server..." - by maxume (22995) on Wednesday December 01, @09:23AM (#34403684)
Examples of what you're asking for have been done (I've done one myself even), but here are some "examples thereof":
HOSTSMAN:
http://www.abelhadigital.com/hostsman
HOSTESS:
http://www.raymarron.com/hostess/
I am FAIRLY sure those do "remote updates", but check to be sure...
(and, there ARE others too, but that's what I came up with on "short-notice" - I *think* mvps.org possibly even has one with the HOSTS file they distribute)
OR
You can just go to these sites & get current copies:
https://zeustracker.abuse.ch/blocklist.php?download=hostfile
http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=DownloadTo name a few reputable & reliable + regularly updated models of HOSTS files (the program I wrote consolidates them all, removes duplicates, alphabetizes the entries, + changes the "blocking IP Address" format from 127.0.0.1 (slowest & largest), to 0.0.0.0 (next slowest & largest) to 0 (not compatible w/ all OS' anymore, but was until Windows VISTA & still is on 2000/XP/Server 2003) & lastly "Trims" them so that no trailing bloating blanks remain (which is what happens in DB engines like Access since no VARCHAR type is present in Access, as it is in mySQL, SQLServer, Oracle, DB2 etc./et al where you can use SELECT * DISTINCT / ORDER BY type queries to do the same as far as removing duplicates, sorts, etc.)
APK
P.S.=> Mine's for personal use (I didn't build in the HTTPGET functionality into it, because I simply email my HOSTS file (a composite of all others + 30,000 or so adbanner blocks I put into it myself) to others that request it, & other programs like that already exist (but they don't do quite as much as mine does otherwise per the list of its functions I put into it above))... apk
-
HOSTS files benefits (over AdBlock &/or DNS ev
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
4.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
5.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
6.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
http://ddanchev.blogspot.com/
https://zeustracker.abuse.ch/monitor.php?filter=online
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/
http://www.mvps.org/
http://someonewhocares.org/
http://hostsfile.mine.nu/hosts0
http://hosts-file.net/?s=Download
http://www.stopbadware.org/home7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock is a program, and subject to bugs programs can get. Hosts files are merely a filter and not a program, thus not subject to bugs of the nature just discussed.
9.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content.
10.) HOSTS files are EASILY user controlled, obtained (for reliable ones -> http://www.mvps.org/winhelp2002/hosts.htm ) & edited too, via texteditors like Windows notepad.exe or Linux nano (etc.)
11.) You don't have the sourcecode to Adblock. With hosts you don't even need source to control it (edit, update, delete, insert of new entries via a text editor).
12.) Hosts files are easily secured via using MAC/ACL &/or Read-Only attributes applied.
13.) AND, LASTLY? SINCE MALWARE GENERALLY HAS TO OPERATE ON WHAT YOU YOURSELF
-
HOSTS files are superior to AdBlock & how/why
1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).
2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).
3.) Adblock doesn't protect email programs external to FF, Hosts files do.
4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).
4.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw for years now - hosts protect against that via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).
5.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders
6.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:
http://ddanchev.blogspot.com/
https://zeustracker.abuse.ch/monitor.php?filter=online
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/
http://www.mvps.org/
http://someonewhocares.org/
http://hostsfile.mine.nu/hosts0
http://hosts-file.net/?s=Download
http://www.stopbadware.org/home7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
8.) AdBlock is a program, and subject to bugs programs can get. Hosts files are merely a filter and not a program, thus not subject to bugs of the nature just discussed.
9.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content.
10.) HOSTS files are EASILY user controlled, obtained (for reliable ones -> http://www.mvps.org/winhelp2002/hosts.htm ) & edited too, via texteditors like Windows notepad.exe or Linux nano (etc.)
11.) You don't have the sourcecode to Adblock. With hosts you don't even need source to control it (edit, update, delete, insert of new entries via a text editor).
12.) Hosts files are easily secured via using MAC/ACL &/or Read-Only attributes applied.
13.) AND, LASTLY? SINCE MALWARE GENERALLY HAS TO OPERATE ON WHAT YOU YOURSELF CAN DO (running as limited class/least privlege user, hopefully, OR even as ADMIN/ROOT/SUPERUSER)? HOSTS "LOCK IN" malware too, vs. communicating "back to mama" for orders (provided they have name
-
HOSTS are better than Privoxy, AdBlock, etc.
A custom HOSTS file will do what the Privoxy, or Adblock softwares will, for less CPU usage (& very possibly RAM usage also) simply by making it impossible to go into KNOWN BAD SITES/SERVERS.
After all: You cannot get burned by what you cannot touch, essentially... & making it impossible to access known bad sites or servers is ONLY A GREAT PART of what hosts files can do (because they do even more, read on)... sound familiar to this Privoxy software? Yes, it does in that case!
However: Can Privoxy speed you up more, ontop of protecting you? Yes!
HOSTS files can also not only protect you vs. known bad sites or servers, but they can also aid in speeding you up online websurfing even more by avoiding DNS lookups by using hardcodes of hostsnames/domainnames to IP addresses of your favorite websites and by blocking ad banners also (which have also been shown to have malicious script in them many times over the years now no less).
You can keep a hosts file updated daily that way easily, by using the following whitehat sites for information on what are the "latest/greatest" known bad sites &/or servers found daily in fact:
http://hosts-file.net/?s=Download
http://www.mvps.org/winhelp2002/hosts.htm (great overall explanation of what HOSTS files can do for you is here and how to manage them (such as tips on turning off your local DNS Client Cache if you use a "largish" hosts file))
http://www.malware.com.br/lists.shtml
https://zeustracker.abuse.ch/monitor.php?filter=online
http://www.malwareurl.com/
http://hostsfile.org/hosts.html
http://someonewhocares.org/hosts/
http://hostsfile.mine.nu/downloads/
http://ddanchev.blogspot.com/
http://www.safer-networking.org/en/download/index.htmlUsed in combination with AdBlock for instance? Great layered security, albeit redundant. Used in combination with NoScript though? An EXCELLENT defense vs. malware attacks online.
APK
P.S.=> HOSTS files do what other wares do, albeit, without eating up CPU cycles &/or RAM as Privoxy, DNS servers, or even the NEW "BLADE" software that just came out... & hosts files are not programs, they are filters - They won't have "programming bugs" in them either, because they are NOT code (just IP stack filters)! apk
-
HOSTS files are superior to Adblock... apk
First of all: Per subject-line above, a custom HOSTS file will do most of what this "BLADE" software will, simply by making it impossible to go into KNOWN BAD SITES/SERVERS.
(After all: You cannot get burned by what you cannot touch, essentially... & making it impossible to access known bad sites or servers is what hosts files can do... sound familiar to this "BLADE" software? Yes, it does, but blade cannot speed you up more, and HOSTS files can ontop of protecting you (HOSTS files can also not only protect you, but they can also aid in speeding you up online websurfing even more by avoiding DNS lookups by using hardcodes of hostsnames/domainnames to IP addresses of your favorite websites and by blocking ad banners also (which have also been shown to have malicious script in them many times over the years now no less)).
You can keep a hosts file updated daily that way easily, by using the following whitehat sites for information on what are the "latest/greatest" known bad sites &/or servers found daily in fact:
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
https://zeustracker.abuse.ch/monitor.php?filter=online
http://www.malwareurl.com/
http://hostsfile.org/hosts.html
http://someonewhocares.org/hosts/
http://hostsfile.mine.nu/downloads/
http://ddanchev.blogspot.com/
http://www.mvps.org/winhelp2002/hosts.htm
http://www.safer-networking.org/en/download/index.htmlHOSTS files also do all that, without eating up CPU cycles &/or RAM as DNS servers do, or this "BLADE" software... & hosts files are not programs, they are filters... they won't have "programming bugs" in them either!
APK
P.S.=> HOSTS FILES ARE ALSO SUPERIOR TO ADBLOCK ON THESE SPECIFIC GROUNDS - 10 ADVANTAGES OF HOSTS FILES OVER BROWSER ADDONS ALONE, & EVEN DNS SERVERS:
----
1.) HOSTS files eat A LOT LESS CPU cycles than browser addons do no less (since browser addons have to parse each HTML page & tag content in them)!
2.) HOSTS files are also NOT severely LIMITED TO 1 BROWSER FAMILY ONLY... browser addons, are. HOSTS files cover & protect (for security) and speed up (all apps that are webbound) any app you have that goes to the internet (specifically the web).
3.) HOSTS files allow you to bypass DNS Server requests logs (via hardcoding your favorite sites into them to avoid not only the TIME taken roundtrip to an external DNS server, but also for avoiding those logs OR a DNS server that has been compromised (see Dan Kaminsky online, on that note)).
4.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
5.) HOSTS files also allow you to not worry about a DNS server being compromised, or downed (if either occurs, you STILL get to sites you hardcode in a HOSTS file anyhow in EITHER case).
6.) HOSTS files are EASILY user controlled, updated and obtained (for reliable ones see mvps.org ) & edited too, via texteditors like Windows notepad.exe or Linux nano or kate (etc.)
7.) HOSTS files aren't as vulnerable to "bugs" either like programs/libs/extensions of that nature are, OR even DNS servers, as they are NOT code, & because of what's next too
8.) HOSTS files are also EASILY secured well, via write-protection "read-only" attributes set on them, or more radically, via ACL's even.
9.) HOSTS files
-
A hosts file does most of what BLADE does anyhow
"Great idea, and I can't wait for it to surface" - by Rurik (113882) on Sunday October 10, @03:09PM (#33853662)
It's been "surfaced" for AGES online now, albeit in the form of CUSTOM HOSTS FILES!
Per subject-line above, a custom HOSTS file will do most of what this "BLADE" software will, simply by making it impossible to go into KNOWN BAD SITES/SERVERS.
(After all: You cannot get burned by what you cannot touch, essentially... & making it impossible to access known bad sites or servers is what hosts files can do... sound familiar to this "BLADE" software? Yes, it does, but blade cannot speed you up more, and HOSTS files can ontop of protecting you (HOSTS files can also not only protect you, but they can also aid in speeding you up online websurfing even more by avoiding DNS lookups by using hardcodes of hostsnames/domainnames to IP addresses of your favorite websites and by blocking ad banners also (which have also been shown to have malicious script in them many times over the years now no less)).
You can keep a hosts file updated daily that way easily, by using the following whitehat sites for information on what are the "latest/greatest" known bad sites &/or servers found daily in fact:
http://hosts-file.net/?s=Download
http://www.malware.com.br/lists.shtml
https://zeustracker.abuse.ch/monitor.php?filter=online
http://www.malwareurl.com/
http://hostsfile.org/hosts.html
http://someonewhocares.org/hosts/
http://hostsfile.mine.nu/downloads/
http://ddanchev.blogspot.com/
http://www.mvps.org/winhelp2002/hosts.htm
http://www.safer-networking.org/en/download/index.htmlAPK
P.S.=> HOSTS files also do all that, without eating up CPU cycles &/or RAM as DNS servers do, or this "BLADE" software... & hosts files are not programs, they are filters... they won't have "programming bugs" in them either! apk
-
I don't know about 1 million in Q2 2010, but...
"Web anti malware firm Dasient has published data claiming that more than 1 million Web sites were compromised in the second quarter, 2010 - a sharp increase. *In Sean Connery's James Bond voice* Of course they have." - by AnonymousClown (1788472) on Thursday September 16, @12:25PM (#33600940)
I don't know about THAT, however? Well - I DO know that my personal custom HOSTS file is nearly @ 1 million absolutely unique entries of known bad sites/servers, and it took me nearly 10++ yrs. now to get it to that # no less!
I populate it from very reputable & reliable sources listed below:
----
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://securitylabs.websense.com/content/alerts.aspx
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://www.scansafe.com/threat_center/threat_alerts
http://news.netcraft.com/
http://www.shadowserver.org/
https://zeustracker.abuse.ch/monitor.php?filter=online
http://en.wikipedia.org/wiki/Hosts_file
http://www.mvps.org/
http://someonewhocares.org/
http://hostsfile.mine.nu/hosts0
http://hosts-file.net/?s=Download
http://www.stopbadware.org/home+ Spybot "Search & Destroy" IMMUNIZE feature add ons also...
----
In fact, as far as growth this summer alone? It's been more than usual, and last summer last year was the same it seems/iirc too...
However: Ahem - 1 million++ new known bad sites &/or servers, & in just 1 quarter?
(Hey, anything's possible, but that's a bit "excessive/steep" imo @ least... still, one never knows! Still, I somehow DOUBT it's that bad out there. Yes, it's bad, but not THAT bad... I don't think so @ least, and I tend to keep pretty steady-eddy tracking of this up (for over 10++ yrs. now @ sites & sources such as those listed above via populating my custom HOSTS file for both added security AND added speed))
I.E./E.G.-> The # of entries of known bad sites &/or servers in my HOSTS file, which a great deal of came from my sources listed above no less, had grown this year from July 15th 2010 to Sept. 15th 2010 by almost 18,000 entries alone at the tail-end of this summer alone (up to 881, 543++ total entries, & gaining typically between 50-250 more each day).
It's crazy out there now, but it doesn't affect "me or mine", because I cannot be hurt by that which I cannot enter to get hurt by it, such as a bad website that's malscripted or bears a malware, because that's what HOSTS files do, at least part in the way of security (and more for speed such as adbanner blocking (which also helps security too, because many a banner ad has been found with malicious code in it too the past few years now as well), and site IP-to-URL hardcoding): HOSTS files, if done right, can keep you from getting burned in a bogus kitchen, so-to-speak!
Still - 1 million++ new known bad sites in just 1 quarter this year 2010? I have trouble with that estimation, in believing it to be blunt about it, & yes, I have been looking at this type of data for quite a long time now (over 10++ yrs. in fact, in making a custom HOSTS file to protect vs. this type of lunacy).
APK
P.S.=> Since I
-
If you block APK spam, your speed would double."I bet if you block APK spam, your speed would double."
1.) HOSTS files eat A LOT LESS CPU cycles than browser addons do no less (since browser addons have to parse each HTML page & tag content in them)!
Wow - Browsers don't parse HTML?
HOSTS files don't let me replace content with a tab to click on to view (eg: videos).
3.) HOSTS files allow you to bypass DNS Server requests logs (via hardcoding your favorite sites into them to avoid not only the TIME taken roundtrip to an external DNS server, but also for avoiding those logs OR a DNS server that has been compromised (see Dan Kaminsky online, on that note)).
My browser caches DNS requests, you insensitive clod!
Hard-coded HOSTS files also crap out maintenance interval and fail-over schemes, as well as client-IP-based server redirection to the fastest server for that location.
4.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).
My browser caches DNS requests, you insensitive clod!
6.) HOSTS files are EASILY user controlled, obtained (for reliable ones -> http://hosts-file.net/?s=Download [hosts-file.net] ) & edited too, via texteditors like Windows notepad.exe or Linux nano (etc.)
HOSTS files are easily altered on unsuspecting users. Been there, done that, works like a charm when one of your friends complains about her husband spending too much time on porn sites.
8.) HOSTS files are also EASILY secured well, via write-protection "read-only" attributes set on them, or more radically, via ACL's even.
HOSTS files also allow an easy way to compromise machines on a per-domain-request basis.
10.) HOSTS files are NOT BLOCKABLE by websites, as was tried on users by ARSTECHNICA (and it worked, proving HOSTS files are a better solution for this because they cannot be blocked & detected for, in that manner), to that websites' users' dismay:
FALSE.
11.) AND, LASTLY? SINCE MALWARE GENERALLY HAS TO OPERATE ON WHAT YOU YOURSELF CAN DO (running as limited class/least privlege user, hopefully, OR even as ADMIN/ROOT/SUPERUSER)? HOSTS "LOCK IN" malware too, vs. communicating "back to mama" for orders (provided they have name servers + C&C botnet servers listed in them, blocked off in your HOSTS that is) - you might think they use a hardcoded IP, which IS possible, but generally they do not & RECYCLE domain/host names they own, & this? This stops that cold, too! Bonus...
Been false for more than a decade. The Russians aren't that stupid.
P.S.=> NOW - The ONLY part of this I don't like when I post this, is the "attack of the fanbois" I am about to experience (which ALWAYS happens on this topic when I post this)... "oh well"!
Simple solution - stop the BS spam
-
CUSTOM HOSTS FILES ARE THE SUPERIOR ANSWER
"Clicking not necessary." - by julesh (229690) on Tuesday March 23, @10:24AM (#31583344)
That's right... & here is an answer for you - CUSTOM HOSTS FILES and why/how they are SUPERIOR TO BROWSER ADDONS:
----
1.) HOSTS files eat no CPU cycles like browser addons do no less!
2.) HOSTS files are also NOT severely LIMITED TO 1 BROWSER FAMILY ONLY... browser addons, are. HOSTS files cover & protect (for security) and speed up (all apps that are webbound) any app you have that goes to the internet (specifically the web).
3.) HOSTS files allow you to bypass DNS Server requests logs (via hardcoding your favorite sites into them to avoid not only the TIME taken roundtrip to an external DNS server, but also for avoiding those logs OR a DNS server that has been compromised (see Dan Kaminsky online, on that note)).
4.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR.
5.) HOSTS files also allow you to not worry about a DNS server being compromised, or downed (if either occurs, you STILL get to sites you hardcode in a HOSTS file anyhow in EITHER case).
6.) HOSTS files are EASILY user controlled, obtained (for reliable ones -> http://en.wikipedia.org/wiki/Hosts_file ) & edited too.
7.) HOSTS files aren't as vulnerable to "bugs" either like programs/libs/extensions of that nature are, OR even DNS servers.
8.) HOSTS files are a solution which also globally extends to EVERY WEBBOUND APP YOU HAVE
9.) HOSTS files are also EASILY secured well, via write-protection "read-only" attributes set on them, or more radically, via ACL's even.
10.) ADBLOCK DOES NOT ALLOW A USER DIRECT EASILY EDITABLE CONTROL OVER WHAT IT BLOCKS & HOSTS do, via texteditors like notepad.exe (afaik, @ least - feel free to correct me IF I am in error here (thanks)).
11.) AND, LASTLY? SINCE MALWARE GENERALLY HAS TO OPERATE ON WHAT YOU YOURSELF CAN DO (running as limited class/least privlege user, hopefully, OR even as ADMIN/ROOT/SUPERUSER)? HOSTS "LOCK IN" malware too, vs. communicating "back to mama" for orders (provided they have name servers + C&C botnet servers listed in them, blocked off in your HOSTS that is) - you might think they use a hardcoded IP, which IS possible, but generally they do not & RECYCLE domain/host names they own, & this? This stops that cold, too! Bonus...
----
Want a GREAT HOSTS FILE, that's kept up to date, daily? See here:
http://hosts-file.net/?s=Download
(Mine's actually BETTER than that too! (As I combine it with ALL THE KNOWN SOURCES for reliable HOSTS files -> http://en.wikipedia.org/wiki/Hosts_file (and far more too, like Spybot S&D & other reliable/reputable sources NOT listed on the wikipedia page for HOSTS files))
I "integrate them" into my HOSTS file using a tool I wrote to do so... It currently parses & processes (removes repeated entries for a form of 1NF type "normalization" (sort of, this is NOT a database is why I note that much) & for 2NF normal form, I remove trailing blanks from entries PLUS I alphabetize them (for faster B-Tree inserts processing in the local diskcache, because odds are, it uses that (binary trees & binary searches ROCK for speed... Tri-E is even a bit better imo)).
It does almost 1 million KNOWN BAD SITES &/or SERVERS (Name servers & botnet C&C servers too) in about 1.1 hours time...
Which is NOT bad, considering its my "2nd round prototype" written in Borland Delphi 7.1x + Inlined Assembly code, for the FASTEST POSSIBLE STRING PROCESSING TIMES THERE ARE, bar-none (faster than MSVC++ @ least even)) & considering I don't have a thing like Access' "JET ENGINE"