mvps.org · Domains · Slashdot Mirror

Doing logon scripts is NOT complicated... apk by Anonymous Coward · 2011-01-04 05:02 · Score: 0 · on Android Trojan Found, Spreading From Chinese App Stores

"But you mislead... it's complicated... it's far more complex keeping track of many systems in an enterprise THAN A SINGLE DNS SERVER that you control" - by catmistake (814204) on Friday December 31, @01:24PM (#34723184)

B.S. - it's as "complicated" (NOT) as writing up a batchfile for a logon script & executing HOSTS files updates using the copy command, in essence/basically, for each user on your network... "real complicated" (not).

APK

P.S.=> You're the one attempting to "mislead" others here, because I have been administrating networks professionally since 1994, & use of logon scripts for HOSTS files updates? A snap... even easier is using a tool like hostsman featured @ mvps.org -> http://www.mvps.org/winhelp2002/hosts.htm which does an "automagic update" from reliable/reputable sources for hosts file data, such as mvps.org is, & so does Spybot "Search & Destroy" as well, & that tool is HIGHLY regarded as very good stuff, worldwide... apk

Your "solutions" are FLAWED & IMPERFECT, fool by Anonymous Coward · 2011-01-03 09:26 · Score: 0 · on Security Researcher Finds Hundreds of Browser Bugs

"I do so enjoy pointing out the total uber fail of your magical woobie so. I also personally consider it a public service to point people to solutions that actually work" - by hairyfeet (841228) bassbeast1968NO@SPAMgmail.com> on Monday January 03, @03:04PM (#34746796)

Ready fool? Ok, let's see how "perfect" your "solutions" REALLY are, below (not yours, you didn't create them - you merely USE THEM, like a trained chimpanzee that you are, techie boy):

---

MULTIPLE EVIDENCES OF ANTIVIRUS &/or ANTISPYWARE PROGRAM FAILURES + SHORTCOMINGS:

http://www.theregister.co.uk/2007/12/04/win_2000_virus_tests/

http://www.securityfocus.com/infocus/1839

http://it.slashdot.org/it/08/11/07/1545238.shtml

---

(Want more? Here comes, on their "heuristics" too)

ANTIVIRUS HEURISTICS EFFECTIVENESS EVIDENCES (i.e. - NOT 100% EFFECTIVE AND GETS FALSE POSITIVES):

---

The sorry state of Avira anti-virus heuristics:

http://grack.com/blog/2010/03/17/the-sorry-state-of-avira-anti-virus-heuristics/

PERTINENT QUOTE/EXCERPT:

"Considering that the risk of false positives is so high (and users might be trained to ignore other, potentially valid virus warnings), I'd say that users are worse off with this virus definition than they are without."

---

(As "1 example thereof", because the very word "HEURISTICS" equates basically to hairyfeet's very bitch here - guesstimation technology really, in that it uses "does it smell/taste/look like a duck" type tech, & it makes mistakes... period, see above!)

---

"You have 190,000 to 340,000 infected websites at this very moment and that list will change by the thousands per minute as sites are cleaned, new sites are infected, new vulnerabilities found, etc. Now for your HOPES file to actually be a REAL protection and not just a woobie? It will have to dynamically scale and keep up with that ever changing list of infections. Now even if you had twenty fingers and subscribed to every security list on the planet your HOPES file will ALWAYS BE OUT OF DATE and behind the curve. Always. Don't like those numbers? Use the ones from Securina, Grisoft, Symantec, any reputable security site. YOU CHOOSE. I have shown mathematically you are full of shit, now lets see you math that proves me wrong PETEY." - by hairyfeet (841228) bassbeast1968NO@SPAMgmail.com> on Monday January 03, @03:04PM (#34746796)

I just did above, vs. your "suggested solutions" lol... easily!

You're "shot down in flames", yet again, hairyfeet... TOO easily!

There is NO WAY THEY CAN KEEP UP WITH NEW MALWARES BEING MADE either... and you say they "work"? See above!

(They're "better than nothing", & I use them myself, for added LAYERED SECURITY - but, I don't put my entire FAITH ON THEM, as you appear to do!)

---

"As in you HOPES that one of the 300,000+ constantly changing array of websites that are infected doesn't happen to be the one you visit today?" - by hairyfeet (841228) bassbeast1968NO@SPAMgmail.com> on Monday January 03, @03:04PM (#34746796)

I use these reputable, reliable, & regularly updated (by the HOUR no less) sources to populate my HOSTS file:

---

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/

Useful SECURITY & SPEED hack for ANDROID phone by Anonymous Coward · 2011-01-03 04:25 · Score: -1 · on The 10 Best Android Hacks

"... but it could be nice to have anything usefull among those hacks, don't you think ?" - by Jimpqfly (790794) on Monday January 03, @08:25AM (#34742856) Homepage

Ask & ye shall receive (per my subject-line above):

ANDROID OS allows for the usage of custom HOSTS files, & that's how you stop botnets from communicating "back to mama" (it's C&C botnet servers), OR, your even getting infected in the 1st place:

DO THE FOLLOWING (after obtaining a good reputable solid HOSTS file, like mvps' -> http://www.mvps.org/winhelp2002/hosts.htm )

---

1.) Get ahold of the "Android Debugging Bridge" (ADB) & install it

2.) Mount your system mountpoint as READ + WRITE (as powerful of priveleges as you need is this)

3.) Using the PULL command, copy the file over from your PC (or even on your ANDROID if its there already) using PULL & overwrite the etc. folder's copy of HOSTS

---

DONE!

(Yes, it's THAT simple... &, it works!)

APK

P.S.=> This came from the recent article here on /.:

---

Android Trojan Found, Spreading From Chinese App Stores:

http://slashdot.org/comments.pl?sid=1930156&cid=34713952

Where you add in these botnet C&C servers for that malware into your custom HOSTS file, like so:

---

0.0.0.0 www.widifu.com
0.0.0.0 widifu.com
0.0.0.0 www.udaore.com
0.0.0.0 udaore.com
0.0.0.0 www.frijd.com
0.0.0.0 frijd.com
0.0.0.0 www.islpast.com
0.0.0.0 islpast.com

---

To BLOCK THEM OUT, & what YOU CAN'T TOUCH, CANNOT HARM YOU OTHERWISE!

---

Which notes there is a malware out there "in the wild" NOW, for ANDROID OS (which also proves LINUX can get malware too, because ANDROID OS is a Linux variant)... & this trick/tip/technique can stop this particular malware that way.

Additionally:

By obtaining & loading a regularly updated HOSTS files from reputable & reliable sources that regularly update theirs, such as this one by MVPS.ORG -> http://www.mvps.org/winhelp2002/hosts.htm You can stay safer online vs. other known threats too, AND GO FASTER TOO - by far... apk

Useful SECURITY & SPEED hack for ANDROID phone by Anonymous Coward · 2011-01-03 04:25 · Score: -1 · on The 10 Best Android Hacks

"... but it could be nice to have anything usefull among those hacks, don't you think ?" - by Jimpqfly (790794) on Monday January 03, @08:25AM (#34742856) Homepage

Ask & ye shall receive (per my subject-line above):

ANDROID OS allows for the usage of custom HOSTS files, & that's how you stop botnets from communicating "back to mama" (it's C&C botnet servers), OR, your even getting infected in the 1st place:

DO THE FOLLOWING (after obtaining a good reputable solid HOSTS file, like mvps' -> http://www.mvps.org/winhelp2002/hosts.htm )

---

1.) Get ahold of the "Android Debugging Bridge" (ADB) & install it

2.) Mount your system mountpoint as READ + WRITE (as powerful of priveleges as you need is this)

3.) Using the PULL command, copy the file over from your PC (or even on your ANDROID if its there already) using PULL & overwrite the etc. folder's copy of HOSTS

---

DONE!

(Yes, it's THAT simple... &, it works!)

APK

P.S.=> This came from the recent article here on /.:

---

Android Trojan Found, Spreading From Chinese App Stores:

http://slashdot.org/comments.pl?sid=1930156&cid=34713952

Where you add in these botnet C&C servers for that malware into your custom HOSTS file, like so:

---

0.0.0.0 www.widifu.com
0.0.0.0 widifu.com
0.0.0.0 www.udaore.com
0.0.0.0 udaore.com
0.0.0.0 www.frijd.com
0.0.0.0 frijd.com
0.0.0.0 www.islpast.com
0.0.0.0 islpast.com

---

To BLOCK THEM OUT, & what YOU CAN'T TOUCH, CANNOT HARM YOU OTHERWISE!

---

Which notes there is a malware out there "in the wild" NOW, for ANDROID OS (which also proves LINUX can get malware too, because ANDROID OS is a Linux variant)... & this trick/tip/technique can stop this particular malware that way.

Additionally:

By obtaining & loading a regularly updated HOSTS files from reputable & reliable sources that regularly update theirs, such as this one by MVPS.ORG -> http://www.mvps.org/winhelp2002/hosts.htm You can stay safer online vs. other known threats too, AND GO FASTER TOO - by far... apk

So much for YOUR MATH, lol, see inside... apk by Anonymous Coward · 2010-12-30 13:28 · Score: 0 · on Spamhaus Under DDoS Over Wikileaks.info

FROM -> http://mobile.slashdot.org/comments.pl?sid=1930156&cid=34717188 (where hairyfeet FINALLY had some courage, albeit where he trolled me & got SHOT DOWN FOR IT, trying to use his so-called WEAK "point" here - you didn't have the BALLS or skills/know-how to combat me, directly, here! Too bad, because this? FLOORS ALL OF YOUR WEAK REMAINING POINTS, easily):

"which after repeated requests to show how a 16Mb static HOSTS file can scale against a threat of over 1.3 MILLION infected sites [softpedia.com] with more than 200,000 being added or removed PER DAY has refused to show proof and instead throws insults." - by hairyfeet (841228) on Thursday December 30, @05:50PM (#34715872)

Don't YOU recall, this: hairyfeet ->

http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834

Which was MODDED UP no less, & shot you down, in SECONDS, too easily! It's also where you RAN AWAY, too, once your "so-called point" was easily shot down?

LMAO... TOO Easy!

---

1.) Now - I have over 920,000 KNOWN malicious sites blocked out (more from this article too no less) in my HOSTS file.

Many get cleaned up too, & get removed from that 1.3 million # you quote

(See my lists from hpHOSTS I cited here for example, they post removal lists & update, EVERY HOUR - Thus, I am, literally, up to the minute on these things)!

So, 1.3 million, minus the removal lists I note from say, hpHosts & others? It's JUST ABOUT RIGHT that I have 920,000 known bad sites currently blocked in my hosts file (& hpHOSTS? They update, HOURLY!)

You lose hairyfeet, as per usual, but you didn't have the BALLS or skills/know-how to combat me, directly, here!

---

2.) Also: Your "faith" in math? Since you went to "ITT TECH" (bottom-of-the-barrell U),b>?? Try explain to me why MATH FAILS HERE:,/b> .999 = 1 (true or false) False, you KNOW it, but... read on:

Let a = .999
10a = 9.999 (this is 10x.999)
10a - a = 9.999 - .999
9a = 9
a=1

Explain that, "ITT TECH MAN"... a was .999 at the START OF THIS - how come it comes out as 1 then?

See, that's what your "ITT TECH" degree gave you - - EGG ON YOUR FACE HERE!

(Yea - I was going to do that where you RAN from, in the 1st URL I posted above, but... this is as good a time as any! No wonder you RAN from that first URL - you KNEW I'd "smoke you", due to better education & experience on MY END!)

---

I think even an "ITT TECH MAN", lol, like you can manage it, right?? Tell us why MATH isn't right there... ok???

Good luck!

---

"Not to mention on any machine before Vista it will seriously slow down the machine broadbandreports.com] as it is read line by line per access, and frankly isn't much better on Vista/Win 7" - by hairyfeet (841228) on Thursday December 30, @05:50PM (#34715872)

Did they turn off the local DNS client cache? No?? That's why... In fact that point's covered here, for Windows users:

http://www.mvps.org/winhelp2002/hosts.htm

Right off the bat! Of course, even a 2nd rate tech knows that, but... NOT YOU! LMAO!

(Too bad you didn't know about it, & it makes you VERY easy to "dispatch" as usual, ITT Tech boy, lol!)

APK

P.S.=> Arstechnica also had their forums members have the police called on them for harassing me, threatening my LIFE, & posting defamatory material on me that wasn't true also & also for impersonating me...!

(So much for your POOR attempt at 'discrediting me', you fool... they impersonated me numerous times on their own forums/sites

Easy to stop, & how to do so... apk by Anonymous Coward · 2010-12-30 08:04 · Score: 1, Insightful · on Android Trojan Found, Spreading From Chinese App Stores

ANDROID OS allows for the usage of custom HOSTS files, & that's how you stop this botnet from communicating "back to mama" (it's C&C botnet servers):

DO THE FOLLOWING (after obtaining a good reputable solid HOSTS file, like mvps' -> http://www.mvps.org/winhelp2002/hosts.htm )

---

1.) Get ahold of the "Android Debugging Bridge" (ADB) & install it

2.) Mount your system mountpoint as READ + WRITE (as powerful of priveleges as you need is this)

3.) Using the PULL command, copy the file over from your PC (or even on your ANDROID if its there already) using PULL & overwrite the etc. folder's copy of HOSTS

---

DONE! Yes, it's THAT simple... &, it works!

APK

P.S.=> Of course, your HOSTS file will need to have the domain/hosts name of the C&C servers, & that you have to obtain for this to work vs. this threat!

(However - I don't think the article noted them, & articles of THAT "nature" are poor imo, not detailed enough - it's nice to say "hey, there's a botnet out there" but to not list its servers too? WTF! Thankfully though, the HOSTS file sources I use to populate my custom HOSTS file update every hour on some of them, & around once a day on most, & once a month for the "worst of them"!)

Other /. articles have helped ME this way before (which is WHY I am sort of "disappointed" in the source article here, per my last paragraph in reply just above now):

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500

apk

HOSTS files are superior to AdBlock &/or DNS a by Anonymous Coward · 2010-12-28 05:50 · Score: 0 · on 4chan Has Been DDOSed

This one's JUST FOR YOU, clone (disprove every single one of its points, as ,b>you failed badly here before on this very same note -> http://slashdot.org/comments.pl?sid=1755714&cid=33353946 AND, for your trolling me as AC here today http://slashdot.org/comments.pl?sid=1922942&cid=34687498 , and YOU FAILED LARGE on your end clone, with a bogus script that didn't work and I had to correct it for you here today after you worked DAYS on it no less, & I had to tell you how/where/when/why it failed, which you corrected for, lol, per MY suggestions no less), so here we go:

---

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/

On attacking "all platforms at once"? Big deal by Anonymous Coward · 2010-12-22 13:00 · Score: 0 · on Will 2011 Be the Year of Mobile Malware?

"iPhoneOS/Android/RIM/W7 so malware writers can hardly target all platforms at once" - by Artem Tashkinov (764309) on Wednesday December 22, @10:45AM (#34641654)

As long as the phones in question run a BSD based IP stack, then, , they already have a defense built in. That defense is a HOSTS file (all the user has to do is fill it with data for blocking out known bad sites/servers/hosts-domain names etc.).

HOSTS work on the "blacklist" principal here: You block out the bad sites, you can't enter them. You can't enter them, you cannot be infected/infested - simple.

Not only that, but you can block out adbanners that eat up bandwidth (and have been known to infect you more than a few times over the years now).

You can also speed up access to your fav. sites using HOSTS also, hosts work on the "whitelist" principle here

(In doing the latter, you also avoid DNS request tracking logs too (in avoiding using DNS altogether for those said favs of yours), you also avoid downed/crashed DNS servers & you still reach your fav. sites, PLUS you additionally/lastly avoid DNS redirected/poisoned (or otherwise hijacked) DNS servers also).

APK

P.S.=> I've already done this on an ANDROID phone, it works excellently for better online SPEED, SECURITY, & even a "touch of added extra 'anonymity'" too (via the ADB (android debugging bridge) & it's PUSH/PULL commands (after mounting the system mountpoint with READ + WRITE priveleges), loading a 24.5mb size HOSTS file, & seeing it work well for the purposes I noted above) & pre-built HOSTS files are out there, & they're regularly updated, such as this one -> http://www.mvps.org/winhelp2002/hosts.htm ... apk

You're going to eat your words YET AGAIN by Anonymous Coward · 2010-12-22 12:07 · Score: -1 · on Spamhaus Under DDoS Over Wikileaks.info

"For your magical woobie to work you will not only have to have EVERY site you visit that MAY OR MAY NOT be infected at that very moment in your magical HOPES file, but every single site they link to such as ad servers and your list has to be accurate to the minute or it is nothing but a woobie" - by hairyfeet (841228)
on Wednesday December 22, @02:24AM (#34638726)

That "woobie" IS actually "accurate to the minute" here, & 915,000 unique entries of KNOWN BAD SITES/SERVERS/HOST-DOMAIN NAMES... simply because I update it from sites that contain information on bad sites/servers/hosts-domain names, & they update 4 or more times a day themselves:

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500

So, as per usual? So much for that from you!

---

"You have bet your ENTIRE existence on a 20 year old tech nobody uses anymore!" - by hairyfeet (841228) on Wednesday December 22, @02:24AM (#34638726)

I think you had best check with places like mvps.org from my reputable sources list above, & their forums people as a counter-example... there are 1000's of them there alone & there are other sites like they too.

Then again also? There are testimonials like this one too:

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

FROM http://tech.slashdot.org/comments.pl?sid=1907528&cid=34532122

To further substantiate this for me (and as I said before here -> http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 I can produce more like that quoted testimonial above)... he, like myself & many others, due to using hosts files, good sense, & layered security concepts, DO NOT GET MALWARE (which blows your points here http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 away, with ease, right at their foundations!)

You still have not "debunked & disproved" my 20++ points in favor of HOSTS files here either:

http://it.slashdot.org/comments.pl?sid=1916240&cid=34607890

Have you? Nope.

(Instead, all we get from you is easily disproven B.S. (via testimonials alone even), and foaming at the mouth hysterically utt

Time 4 U2 EAT YOUR WORDS HERE too... apk by Anonymous Coward · 2010-12-22 04:43 · Score: 1 · on Al Franken Makes a Case For Net Neutrality

"For your magical woobie to work you will not only have to have EVERY site you visit that MAY OR MAY NOT be infected at that very moment in your magical HOPES file, but every single site they link to such as ad servers and your list has to be accurate to the minute or it is nothing but a woobie" - by hairyfeet (841228)
on Wednesday December 22, @02:24AM (#34638726)

That "woobie" IS actually "accurate to the minute" here, & 915,000 unique entries of KNOWN BAD SITES/SERVERS/HOST-DOMAIN NAMES... simply because I update it from sites that contain information on bad sites/servers/hosts-domain names, & they update 4 or more times a day themselves:

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500

So, as per usual? So much for that from you!

---

"You have bet your ENTIRE existence on a 20 year old tech nobody uses anymore!" - by hairyfeet (841228) on Wednesday December 22, @02:24AM (#34638726)

I think you had best check with places like mvps.org from my reputable sources list above, & their forums people as a counter-example... there are 1000's of them there alone & there are other sites like they too.

Then again also? There are testimonials like this one too:

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

FROM http://tech.slashdot.org/comments.pl?sid=1907528&cid=34532122

To further substantiate this for me (and as I said before here -> http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 I can produce more like that quoted testimonial above)... he, like myself & many others, due to using hosts files, good sense, & layered security concepts, DO NOT GET MALWARE (which blows your points here http://it.slashdot.org/comments.pl?sid=1916240&cid=34612834 away, with ease, right at their foundations!)

You still have not "debunked & disproved" my 20++ points in favor of HOSTS files here either:

http://it.slashdot.org/comments.pl?sid=1916240&cid=34607890

Have you? Nope.

(Instead, all we get from you is easily disproven B.S. (via testimonials alone even), and foaming at the mouth hysterically utt

Thanks 4 answer: I asked the question... apk by Anonymous Coward · 2010-12-19 02:33 · Score: 0 · on Carrier Trick To Save IPv4 Could Help Spammers

""IP Reputation" systems are basically a step beyond DNSBLs (which only consider things as white vs black). There is a decent explanation in Wikipedia's Sender's IP verification section of their E-mail authentication article" - by Khopesh (112447) on Saturday December 18, @01:54PM (#34601326) Homepage

Thanks - that's to BOTH yourself, and SuricouRavenn, who also replied here in regards to "IP Reputation" & what it is (I have a message for SuricouRavenn here also -> http://yro.slashdot.org/comments.pl?sid=1903798&cid=34559886 regarding Windows Defender/Microsoft Security Essentials) - thank you!

I do MUCH THE SAME as a DNSBL, albeit locally... via custom HOSTS files - here is why (long read, but detailed & I think you MAY find it, informative, possibly):

---

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/

Correction (not Windows Defender, rather HOSTS) by Anonymous Coward · 2010-12-19 02:25 · Score: 0 · on Opera Goes To 11, With Extensions and Tab Stacks

http://tech.slashdot.org/comments.pl?sid=1907528&cid=34573764

You also made a mistake, one I see many folks do, on HOSTS files (you didn't cut off the DNS Client Side cache, & that's why you saw a "lag" with HOSTS files (larger ones demand you turn off the DNS clientcache, smaller ones do not, & that's all covered very well & in detail, here -> http://www.mvps.org/winhelp2002/hosts.htm )

APK

P.S.=> Another fellow did on Windows Defender, here -> http://yro.slashdot.org/comments.pl?sid=1903798&cid=34559886 so, sorry for confusing you w/ he in this case... but, nevertheless? The problem you saw with HOSTS files is most likely due to that which is in the FIRST url above! apk

Easy to beat with a custom HOSTS file by Anonymous Coward · 2010-12-19 01:49 · Score: -1 · on Spamhaus Under DDoS Over Wikileaks.info

"1) Russian criminals have control over the wikileaks.org and wikileaks.info domains and are distributing malware. The current real wikileaks website is wikileaks.ch." - by Anthony Mouse (1927662) on Saturday December 18, @08:04PM (#34603730)

ping wikileaks.ch IS YOUR FRIEND!

Enter the result of that into your custom HOSTS file (Windows: %WinDir%\system32\drivers\etc OR on LINUX: root/etc OR ON ANDROID PHONES: by mounting the system mountpoint first, w/ read + WRITE ability, & then using the SDK tool ADB to PUSH the new HOSTS file into the etc folder there, overwriting the stock-oem model)

E.G.-> (from MY "ping" result, that would go into a HOSTS file for this):

178.21.20.9 wikileaks.ch

PUT THAT INTO YOUR CUSTOM HOSTS FILE (after pinging wikileaks.ch, because the IP address you come up with MAY be different than that which I come up with here).

That's doing a "whitelisting" in your HOSTS file, w/ the proper IPAddress - to - HOST/DOMAINName resolution, so you reach that site (and, you avoid DNS request log tracking in doing so also, bonus, because you NEVER USE THE ISP/BSP (or other) DNS server, period).

---

"2) Spamhaus has been telling people about (1). 3) The Russian criminals are now retaliating by using their botnets to DDoS Spamhaus under the flag of AnonOps." - by Anthony Mouse (1927662) on Saturday December 18, @08:04PM (#34603730)

Hey - They're easy to beat too (Russian criminals), & also by using a HOSTS file...

Albeit, this time, NOT FOR WHITELISTING A SITE, but, rather for "blacklisting" the sites/servers they use or redirect you to, for loading malware onto your systems!

(Between that, & using NoScript or turning off javascript period, you ARE PROTECTED (you really only need it for database accesses when you come down to it, to do "real things" (not playtime stuff, or eyecandy) usually, after all)).

APK

P.S.=> Reputable, reliable, & regularly updated sources for blacklisting data for a HOSTS file are as follows:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398

HOSTS files are superior to AdBlock &/or DNS a by Anonymous Coward · 2010-12-16 06:08 · Score: -1 · on Should Wikipedia Just Accept Ads Already?

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398

HOSTS files are superior to AdBlock &/or DNS by Anonymous Coward · 2010-12-16 06:05 · Score: 0 · on Should Wikipedia Just Accept Ads Already?

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398

HOSTS files are superior to AdBlock & DNS even by Anonymous Coward · 2010-12-16 05:58 · Score: 0, Insightful · on Should Wikipedia Just Accept Ads Already?

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhack others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398

With a HOSTS file? You don't NEED to do that... by Anonymous Coward · 2010-12-16 05:18 · Score: 0 · on NSS Labs Browser Report Says IE Is the Best, Google Disagrees

"Reading the report, it sounds like they were just testing the browsers' databases of known malware/phishing sites" - by gman003 (1693318) on Wednesday December 15, @03:51PM (#34565790)

Per my subject-line above? With a GOOD UP-TO-DATE HOSTS FILE?? You don't even NEED to do that!

I update mine daily, from these reliable & reputable sources (for blocking out KNOWN bad sites/servers/host-domain names etc.):

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhacker others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500

---

So, IF/WHEN you have a HOSTS file that has up to date blocking data in it? There's really no real need to do "browser based checks" of URL's, other than for "layered-security" purposes (which isn't a BAD THING TO DO, & it's the "current trend" for better security online).

Besides: IE, FireFox, and Opera ALL have methods for blocking out known bad sites already:

---

Opera has URLFILTER.INI (Spybot S&D populates this, alongside the Opera community doing updates to it too)

FireFox has an analog to Opera's filter file (which is what SpyBot S&D populates alongside a HOSTS file too vs. known bad sites)

IE has "restricted zones"

---

Still - the folks @ MS doing this in IE9 (which I use here)? Not a bad thing at all, for "layered-security"...

APK

P.S.=> Even the folks @ WIKIPEDIA aren't against blacklists like HOSTS:

---

PERTINENT QUOTE/EXCERPT (from -> http://www.theregister.co.uk/2010/12/16/wikileaks_mirror_malware_warning_row/ )

"we are in favour of 'Blacklists', be it for mail servers or websites

---

Why? Well, because they work... especially for layered security online... apk

I don't see ads on PC's, or ANDROID... apk by Anonymous Coward · 2010-12-12 00:32 · Score: 0 · on Online Tracking Firms To Launch Opt-Out Program

"(*) Unless you run iOS or Android." -

I use a custom HOSTS file to block out ad banners - THUS, I "opted-out" from online advertisers, long ago & hosts files were my way of doing so...

Why? Ok:

---

MICROSOFT APOLOGIZES FOR SERVING MALWARE:

http://apcmag.com/microsoft_apologises_for_serving_malware.htm

---

Adbanners have been shown to harbor maliciously scripted code, as in the example above, & that's just a SINGLE INSTANCE. There have been others also... so, for online security's sake, I block them out.

I also do so because ISP's are in talks to bill you for how much you use your connection, bandwidth-wise, here:

---

FCC Approving Pay-As-You-Go Internet Plans:

http://yro.slashdot.org/story/10/12/08/2012243/FCC-Approving-Pay-As-You-Go-Internet-Plans

---

So, by blocking out adbanner content, that means I don't consume as much bandwidth by downloading & processing adbanner code either (even IF it's "safe" from malware content within). That's for BOTH PHONES &/or PC's mind you, especially in light of that 2nd URL above happening... because, after all, bottom-line here is, that it's YOUR MONEY FOLKS, after all!

HOSTS files do ALL OF THAT, for me, even to the point of possibly saving money (if the FCC plans go thru on "pay as you use" internet billing)... & also, far more!

(Below in my P.S. section extolls all the virtues of using HOSTS files, even over AdBlock &/or DNS servers alone).

HOWEVER, most everyone knows you can obtain a reliable HOSTS file from MVPS.ORG here -> http://www.mvps.org/winhelp2002/hosts.htm and you overwrite your root/etc model in LINUX, or your %WinDir%\system32\drivers\etc model in Windows for it to begin to work... but!

How do you do load a custom HOSTS file for all of that on ANDROID?

You use developer tools is how!

ADB is your pal, and utilizing it, you:

---

A.) Use the mount command, & mount the system mount point on ANDROID as both READ & WRITE, first.

B.) Next, use the PULL command on the HOSTS file you want from wherever it is you keep it (hook your ANDROID to your PC for this)

C.) Lastly, use the PUSH command on the HOSTS file you want on ANDROID to send it to the system mount point on the ANDROID phone device, overwriting it as you would on LINUX (in the etc folder)

---

Since ANDROID is a form of LINUX, it will work the same, blocking out adbanners, maliciously scripted content on sites/servers that attempt to hijack your PC with malware, & you go faster online too!

You gain speed, security, & more "anonymity" by blocking out adbanners &/or malicious content using a HOSTS file, in the following ways:

---

1.) You gain speed of access to your favorite websites by "hardcoding in" your favorite websites as it avoids the roundtrip IPAddress - to - Host/Domain name resolution requests to DNS servers, which is slower than local HOSTS file access (since HDD's are faster than calling out to a remote server for that information),

2.) You gain privacy by avoiding DNS request tracking logs (more privacy/"anonymity" potential here)

3.) You avoids DNS poisoned or redirected DNS servers

4.) You avoid downed/crashed DNS servers

5.) You avoid known bad servers/sites that host malware laden content (by blocking out these sites using 127.0.0.1 (slowest & largest), 0.0.0.0 (next slowest & largest, + most compatible), or 0 (smallest & fastest of the lot, but won't work on Windows Server 2008, VISTA, or Windows 7 anymore))...

6.) You avoid being charged on some ISP/BSP's "pay as you use" policy (see 2nd

I update my custom HOSTS file once a day here by Anonymous Coward · 2010-12-10 01:17 · Score: 0 · on Beating Censorship By Routing Around DNS

Once a month! Do you really think that's enough? DNS records change all the time. Not all of them, but enough to make that list obsolete in a couple of days." - by icebraining (1313345) on Friday December 10, @04:13AM (#34512138) Homepage

Well - For blocking out known bad sites, that's "adequate" (that's mvps.org's schedule though - I do it FAR MORE FREQUENTLY, as far as blocking of sites that harbor malware exploits)...

However, the HOSTS file can be used to do more than just that though in "hardcoding in" your favorite websites IPAddress - to - domain/host name equation for more speed, & blocking out known bad sites is a part as I noted it above... so is blocking out adbanners (good OR BAD ones http://apcmag.com/microsoft_apologises_for_serving_malware.htm).

(See, icebraining - You're ONLY hitting on 1 use of a HOSTS file only here, in noting hardcoding the "IPAddress-to-Domain/Host Name resolution" into them for more speed, which also gives you the speed advantage of avoiding DNS request roundtrip time, & also the security advantage of avoiding DNS request logs tracking too - HOWEVER, custom HOSTS files are also a great layer of defense vs. being malware attacked by malicious scripts known bad sites have too).

Personally, I use mvps.org's lists for update vs. adbanner servers, & also known bad sites... I use them, alongside MANY others also (see below):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

And yes: Even SLASHDOT &/or The Register help!

(Via articles on security (when the source articles they use are "detailed" that is, & list the servers/sites involved in attempting to bushwhacker others online that is... not ALL do!)).

2 examples thereof in the past I have used, & noted it there, are/were:

http://it.slashdot.org/comments.pl?sid=1898692&cid=34473398
http://it.slashdot.org/comments.pl?sid=1896216&cid=34458500

For blocking out adbanners &/or known bad sites? I do updates from the above sources, everyday (working on one now as I write this)

---

NOW: For more speed to my favorites for my top 250 "favorite sites" (like this one)?

The same program I wrote that does this as well:

1.) Removes duplicate HOSTS files entries

2.) Trims trailing blanks (which a SELECT * DISTINCT ORDER BY query leaves in say, Access, because no VARCHAR exists (like mySQL, Oracle, SQLServer, DB2 etc. have))

3.) Alphabetizes the entries in my HOSTS file

4.) Changes the blocking IP address used from 127.0.0.1 (std./stock loopback adapter address, slowest & largest read of the lot here), to 0.0.0.0 (better in speed/size for reads, & just as compatible as the loopback), to 0 (smallest & fastest of the lot, but, only works in Windows 2000 SP#2 onwards/XP/Server 2003 (used to in VISTA up to 12/09/2008 MS "Patch Tuesday", & it no longer does after that on Windows VISTA/Windows Server 2003/Windows 7))

My custom HOSTS updating program (APK Hosts File Grinder 4.0++) also "Pings" my list of my fav. sites (read up from a text file into a listbox) to keep them curren

They can't touch me, & here is HOW/WHY by Anonymous Coward · 2010-12-07 02:55 · Score: 0 · on Researchers Tracking Emerging 'Darkness' Botnet

From the source article, I obtained their server's domain/hostnames and nameservers, which I now have added to my custom HOSTS file... & blocked out, thus:

0.0.0.0 greatfull-toolss.ru
0.0.0.0 ns1.reg.ru
0.0.0.0 ns2.reg.ru
0.0.0.0 greatfull.ru
0.0.0.0 ns1.arbusi-host.net
0.0.0.0 ns2.arbusi-host.net
0.0.0.0 hellcomeback.ru

They're not going to get to ME, because I cannot get to they now... & what I can't touch, I cannot be "burned" by, simple!

HOSTS as blacklists, work! Some evidences & cases why you may be interested in implementing such protective (and speed gaining features too) measures:

---

15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download

metrix007 disprove these points then on HOSTS by Anonymous Coward · 2010-12-06 01:42 · Score: 0 · on Chinese DNS Tampering a Real Threat To Outsiders

"Kid, you have no idea what you're talking about... You are strongly misinformed on several points. I can't be bothered to respond to you, (i.e. feed the troll) because I don't think it would be worth my time. You're obsessed, and not interested in rational discussion - by metrix007 (200091) on Monday December 06, @07:03AM (#34458496)

Ok, you FINALLY came back in, & NO: I am TRULY interested in "rational discussion", not avoiding it (as you obviously are with your 2 trollish replies here in this thread), so with that said? Disprove each of these 15 points on HOSTS files then:

15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.ab

Thanks for the info.: Why? See inside... apk by Anonymous Coward · 2010-12-06 00:03 · Score: 0 · on Doorways Sneak To Non-Default Ports of Hacked Servers

Thanks for supplying the bogus domains information. I checked on yourisp.ru, and sure enough - a known bogus malware domain/host name. It's blocked out here now, alongside payment8ltd.net, & how? Here is HOW & WHY:

15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added layered security:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc.).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

8.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

9.) AdBlock & DNS servers are program

I never see their crap. How? Block spammer domains by Anonymous Coward · 2010-12-05 23:26 · Score: 0 · on A Third of World's Spam From One Russian Man

What blocks off known bogus sites/servers or entire hostnames/domains better than anything (because it's not a program, and because it's just a filter that operates @ the IP Stack level, and covers ALL your webbound programs, plus mine at least gets updated from reputable & reliable sources, daily): a custom HOSTS file.

You've also already got one, whether you all know it or not, & it's just a matter of either downloading a prebuilt on (sources are below), or filling one in yourself, and yes, they work even vs. spam mail (& better than adblock does, because that only covers browsers it's designed for (maybe 1-3 of them), but not external HTML + script based external email programs, like Outlook Express/FULL Outlook)).

15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spyb

At least you were "modded up" for HOSTS use... apk by Anonymous Coward · 2010-12-03 03:14 · Score: 0 · on WikiLeaks Moves To Swiss Domain After DNS Takedown

15++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm [mvps.org]
http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

8.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

9.) AdBlock & DNS servers are programs, and subject to bugs programs can get. Hosts files are merely a filter and not a program, thus not subject to bugs of the nature just discussed.

10.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs.

11.) HOSTS files are E

Re:Fuck that! by Lumpy · 2010-12-01 08:07 · Score: 2 · on Race On To Fingerprint Phones, PCs

http://www.mvps.org/winhelp2002/hosts.txt

click, save as... all done. I have a batch file that does it weekly for me with the AT command.

not a chore at all.

If users understand text files, they do by Anonymous Coward · 2010-12-01 03:55 · Score: 0 · on The Pirate Bay Co-Founder Starting P2P-DNS

"Or better yet, WTF are host files? Non-techs can sort of understand ABP, as it is an add-on that stops bad or all ads. Host files, no way an average computer user would understand them or utilize them." - by stonewallred (1465497) on Wednesday December 01, @10:40AM (#34404550)

Take a GOOD solid read (and if still in doubt? Refer to this mvps.org link -> http://www.mvps.org/winhelp2002/hosts.htm (it has a great writeup that's EASILY UNDERSTOOD & very detailed, on HOSTS)) - this will show you how/why HOSTS files are superior to AdBlock or even DNS servers on MANY accounts (and why you ought to use them in combination for the "best in 'layered security'" practices online!

14 ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK:

1.) Adblock blocks ads in only 1 browser family (Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF...).

2.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

3.) Adblock doesn't protect email programs external to FF, Hosts files do.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 4-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via PINGS &/or WHOIS though, regularly, so you have the correct IP & it's current)).

6.) HOSTS files protect you vs. DNS-poisoning &/or the Kaminsky flaw in DNS servers, and allow you to get to sites reliably vs. things like the Chinese are doing to DNS -> http://yro.slashdot.org/story/10/11/29/1755230/Chinese-DNS-Tampering-a-Real-Threat-To-Outsiders

7.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
http://blog.fireeye.com/
http://mtc.sri.com/
http://news.netcraft.com/
http://www.shadowserver.org/
http://www.stopbadware.org/home

REGULARLY UPDATED HOSTS FILES SITES (reputable/reliable sources):

http://www.mvps.org/winhelp2002/hosts.htm [mvps.org]
http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]