mvps.org · Domains · Slashdot Mirror

HOSTS file by schwit1 · 2014-01-17 10:27 · Score: 4, Informative · on Ask Slashdot: Are AdBlock's Days Numbered?

http://winhelp2002.mvps.org/hosts.txt
http://pgl.yoyo.org/as/serverlist.php?showintro=0;hostformat=hosts
http://someonewhocares.org/hosts/

Re:And this is why... by Anonymous Coward · 2014-01-05 08:47 · Score: 0 · on Yahoo Advertising Serves Up Malware For Thousands

ScriptSafe does about the same as NoScript.

Do you work for Google? Unless I have missed something or it has changed ScriptSafe is no where near as functionally selective as NoScript. If one is going to enable any scripting at all it should be as selectively minimal as possible and not every fucking script on a given URL. Say for instance you actually want to waste some time and bandwith at Hulu, then with noscript you can enable Hulu.com and Hulumim.com and watch the show without enabling the additional annoyance and spying links wanting you to socialize with them. Of course even with NoScript you may want to remove many of the default whitelisted sites, including the 3 Yahoo listings IMO. AdBlock+, for whatever reasons, doesn't block all the ads in the Hulu video player. That you can take care of via changing the hosts file. Of course once you do then the Hulu player figures out your blocking the ads and increases the time it waves the "click here to enable ads screen" in your face thus increasing your time to go to the restroom, wash your hands and go to the kitchen to make a sandwich and/or grab a drink.

Oh, and does anyone know why there are only half the blocking options in Ghostery when run in Chrome or just why it is that there is not available a valid substitute for NoScript or NoScript itself? If I have missed something about Chrome and ScriptSafe, please enlighten me as I would love to be wrong just as I would love for their to be a valid substitute for NoScript in Chrome and for things like Ghostery to be as fully functional in Chrome as they are in FireFox. Of course it would be best if none of those addons were even necessary because none of those problems existed or at least the necessary functions were incorporated into the browsers. Until it is then Firefox and its variants are the only options to just completely denying scripting or doing such browsing on a diskless computer etc.

two more steps by spywhere · 2013-12-31 05:07 · Score: 1 · on 4 Tips For Your New Laptop

Create an additional administrative account, with a complex password (but don't lose it). You will use this to effect repairs if malware infects your main profile. (Most Win6.x malware is confined to the user profile and C:\ProgramData folders to avoid the UAC prompt).

Download the Hosts file from http://winhelp2002.mvps.org/hosts.htm, which will protect you from all kinds of threats (and it hides a buttload of advertising, too).

Re: I have mixed feelings about this. by Striikerr · 2013-09-17 00:24 · Score: 5, Interesting · on Doubleclick Cofounder Responds to Patent Troll by Filing Extortion Lawsuit

It's apparent that the whole patent system is in dire need of an overhaul. The question is who will finally step up in the government to fix this mess.. It's something I hear of almost daily (patent trolls killing off innovation and screwing people out of money).

The double-click ads never land on my systems. I use a hosts file to block their stuff along with other ads. I did some searching around and found a few places which provide hots files which you can use on your computers. Here's a great site which maintains a hosts file which you can use in your computers.. http://winhelp2002.mvps.org/hosts.htm

Re:I hope there's an easy social integration disab by LandGator · 2013-08-06 07:39 · Score: 1 · on Firefox 23 Arrives With New Logo, Mixed Content Blocker, and Network Monitor

http://winhelp2002.mvps.org/hosts.htm seems to find it acceptable.

Re:MSE by UnknownSoldier · 2013-07-16 04:04 · Score: 1 · on Ask Slashdot: Light-Footprint Antivirus For Windows XP?

> but MSE has a light effect on my Windows partition

Another vote that MSE is good enough - not bloated, doesn't bog the machine down like Norton / McAffe. However you really need a multi-pronged solution for security:

* Firewall - both Hardware & Software
* Hosts Blocking - http://winhelp2002.mvps.org/hosts.txt
* Anti-Virus (real-time) - MSE
* Anti-Cookies: Spybot Search N Destroy, Adaware

> use XP with NO virus protection for a month, visit the same websites these people visit, use a modern web browser (not IE 8), and see at the end of that period if you are actually infected.

A good hosts file (such as the one above) will block 99% of that crap.

But no code words please. by niftymitch · 2013-06-14 09:32 · Score: 1 · on Woz Compares the Cloud and PRISM To Communist Russia

These big dustbin collections of data are interesting.

No TLA agency code words would have been used. Google, Facebook, Microsoft would never see a document request that contains a code word.

Give the large number of requests agents would likely have desks in house. Agents would not have free access to company resources. As big as the big internet companies are they cannot give free unfettered access to company resources.

Queries still need to be crafted and tested. Company employees may not be privy to the secret target so agents may have to craft and run the search for data then validate that it gets the information in question then have the employee rerun the search on live data and modify the access control meta data bits of the output to deliver it to the agent.

The agent now with the data would have credentials to transfer the data to the home office via some resource that may or may not be described by some magic code word that the agent may not have a need to know the name of.

I think that the big G gets thousands of requests... and clearly the big internet companies have no way to validate the details of the search with dozens perhaps hundreds of test searches and a couple final searches a day.

Nothing keeps the big TLA agencies from running their own web search engines. Put up a web page and measure the different engines that touch it. Search engine companies are not the most interesting companies... the long list of hosts implicated in CSS files and flash content cookies are much more interesting.
# This MVPS HOSTS file:
# http://winhelp2002.mvps.org/hosts.htm

After delivery nothing keeps the FISA requests from being combined (that I know of). When a massive search might be denied a largish number of large searches would pass inspection. Agent Aarron get all the A's, Agent Bob get all the B's..

Over the years since '78 data flows into but may never be deleted. There are voters that now have their entire lives spanned by these efforts.

Personally my opinion is the big O is too nice a guy and too naive to do anything bad. Naive opens the door for others with lesser or no principals to do harm.

Deep breath now.... it will be OK....

Re:Who figured this out? by Anonymous Coward · 2013-05-10 20:09 · Score: 0 · on Microsoft YouTube App Strips Ads; Adds Download

I know, right?...

I've been using a hosts file to block ads on my computers for years and years... Surprises the hell out of me when I use other people's computers and discover that the internet is over 80% ads. How anyone manages to use it that way and keep their sanity is beyond me.

Re:bloat by houghi · 2013-05-04 19:44 · Score: 1 · on ORBX.js: 1080p DRM-Free Video and Cloud Gaming Entirely In JavaScript

Firefox even disregards the hosts file.
Sure, you can disable it, but why would it be ignioring it in the first place? Why would it have DNS cache and looking up things itself. Probably just so it is faster on paper then some other browser. Well, with those miliseconds gained, please deduct the hours I spend trying to figure out what the fuck went wrong when I could not get to localhost or any machine that was in my hosts file.

So, please stop adding shit to the browser that should belong in add-ons (if somebody wants them) or at least make it easier then to go through the about:config. Why not spend some time on making those settings more accessible?

Oh, a search shows that all browsers do this. Probably so we don't use mvps or other similar sites.

Agreed, 110% (unfortunately)... apk by Anonymous Coward · 2013-04-14 10:53 · Score: 0, Informative · on Maintaining a Publicly Available Blacklist - Mechanisms and Principles

The reason I state this, is because I've been building up a successful blacklist (albeit NOT vs. "spam" or phishers only, but more vs. online threats in maliciously scripted sites &/or servers known to serve up malware etc.):

Yes, thus - I'd have to say, based on 15++ yrs. of experience doing it (based on reputable & reliable sites listed below) that yes, MOST of it comes from those nations (& that's why I said "unfortunately" in my subject-line - since I know their people are NOT "all bad", just that they have a lot of what you state going on).

I base this not only on "opinion" but HARD DATA too!

From a list I apply in custom hosts files of over 1,967,147 such bogus sites/servers that grows by almost 200 - 2,000 such sites each day, approximately (that *might* strike some of you as "fantastic", but it's real)... I get my data from the following sites:

http://hosts-file.net/?s=Download
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000
http://winhelp2002.mvps.org/hosts.htm
https://spyeyetracker.abuse.ch/monitor.php?filter=lastupdated
http://safeweb.norton.com/noscript/
http://mirror1.malwaredomains.com/files/
http://hostsfile.org/hosts.html
http://www.malwareurl.com/
http://sysctl.org/cameleon/hosts
http://pgl.yoyo.org/as/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext
http://www.safer-networking.org/dl/
http://amada.abuse.ch/palevotracker.php

AND, then I import, consolidate, sort, & deduplicate that data using this application I wrote to do so:

---

APK Hosts File Engine 5.0++ 32/64-bit:

http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74

---

Why? Simple - it works, & on the SIMPLEST PRINCIPLE OF ALL: What you can't touch, can't hurt you... & I never was the type of person to just "sit around & take it" - I do something about it, IF possible. The above IS my possible, and it is possible & works (in combination with all I put into this security guide I authored from 1997-2007, here -> http://www.google.com/search?hl=en&output=search&sclient=psy-ab&q=%22How+to+SECURE+Windows+2000/XP%22&btnG=Submit&gbv=1&sei=PjNrUcDVGpSz4AOJuIHQDQ that works on the BEST THING WE HAVE GOING: "Layered-Security"/"Defense-in-Depth"... & yes, it works! )

APK

P.S.=> Any questions?

... apk

I do pretty much the same here... apk by Anonymous Coward · 2013-04-08 01:31 · Score: -1 · on Google Uses Reputation To Detect Malicious Downloads

Except I completely control it locally @ the fastest level of operations possible (the TCP/IP stack running in PnP designed kernelmode/rpl 0/ring 0 operations) as a filter:

---

APK Hosts File Engine 5.0++ 32/64-bit:

http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74

---

(What custom hosts files do for me in added value for better speed, security, reliability, & even anonymity to an extent is listed there in 16 discrete points...)

* "Auto-Magically" populating & creating a custom hosts file from 14++ reputable & reliable sources for data for protecting vs. known malicious sites/servers/hosts-domains:

http://hosts-file.net/?s=Download
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000
http://mirror1.malwaredomains.com/files/
http://hostsfile.org/hosts.html
http://someonewhocares.org/hosts/
http://www.malwareurl.com/
http://sysctl.org/cameleon/hosts
http://pgl.yoyo.org/as/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext
http://winhelp2002.mvps.org/hosts.htm
http://hostsfile.mine.nu/downloads/
http://safeweb.norton.com/buzz
https://zeustracker.abuse.ch/monitor.php?filter=lastupdated
http://amada.abuse.ch/palevotracker.php

APK

P.S.=> Best part is, it's not only of value for security, but also for added:

---

1.) Speed (via blocking adbanners as well as bogus sites online, but also via "hardcoding" your favorite sites into it for FASTER IP address resolution locally than from remote DNS servers (which have faults in them, many of which remain unpatched vs. the Kaminsky DNS redirection poisoning flaw, 1/2 a decade++ later AFTER its discovery -> )

2.) Reliability (vs. said unpatched flaw above OR downed remote DNS servers)

3.) To an extent, anonymity (vs. DNS request logs)

---

... apk

Re:don't RTFA by Anonymous Coward · 2013-03-27 02:00 · Score: 0 · on Largest DDoS In History Reaches 300 Billion Bits Per Second

I only had two tiny in-line ads on TFA.
MVPS HOSTS file does the trick.
The only thing I still have problems with are "pre-roll" videos.

Learn the TRUTH about host files... apk by Anonymous Coward · 2013-03-26 10:07 · Score: -1 · on T-Mobile Ends Contracts and Subsidies

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

2.) Adblock blocks ads (not anymore apparently, lol:

Adblock Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter=online [abu

custom hosts file inferior to custom hosts file by Anonymous Coward · 2013-03-22 18:57 · Score: 0 · on Tracking the Web Trackers

20++ ADVANTAGES OF HOSTS FILES OVER HOST FILES &/or HOST FILE ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do HOST FILEing for ANY webbrowser, email program, etc. (any webbound program).

2.) HOST FILE blocks ads (not anymore apparently, lol:

HOST FILE Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/HOST FILE-plus-to-offer-acceptable-ads-option )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an HOST FILE addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) HOST FILE doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) HOST FILE won't get you to your favorite sites if a HOST FILE goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) HOST FILE doesn't allow you to hardcode in your favorite websites into it so you don't make HOST FILE calls and so you can avoid tracking by DNS request logs, hosts do (HOST FILEs are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like HOST FILE does while it parses a webpages' content, nor as much as a HOST FILE does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than HOST FILEs can by FAR (by saving the roundtrip inquiry time to a HOST FILE & back to you).

8.) HOST FILE doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter

ADBLOCK AND GHOSTERY INFERIOR TO APK HOST FILE apk by Anonymous Coward · 2013-03-22 18:53 · Score: -1 · on Tracking the Web Trackers