Slashdot Mirror

I do it all the time: https://someonewhocares.org/ho...

I agree on the value of uMatrix. Right now, for example, it is blocking 14 items from Slashdot. I can't imagine browsing the web without it or something similar.

When I sometimes see people browse the web without it I am a bit shocked at what most web pages look like. Also, once I posted a link to a reasonable site without knowing that there was advertising-supplied "your computer has been infected" junk there -- because I usually just don't see junk like that.

For personal web surfing, I mostly use a not-too-fast Chromebook (running GalliumOS) with only 4GB RAM -- but I can have dozens or sometimes even hundreds of tabs open without much slow down (usually) -- because most of the JavaScript is selectively blocked. Contrast that with comments by people who say their Chromebook (or other machine) slows down when only a few tabs are open.

The risk though is that uMatrix can in theory mess with any site or with your computer. This is the sort of thing that should be baked into every browser -- and continually undergo stringent review. But it is not built-in because -- even with Firefox -- there are conflicts of interests with how browser vendors make their money via either advertising or deals with advertisers.

A plus for me is that -- as a JavaScript/TypeScript UI developer mostly right now -- looking at what JavaScript sites load can be educational. But I can see how for the average web user that is mostly going to be more of a potentially confusing chore -- although a chore still worth it for everyone IMHO.

I don't use uBlock origin -- maybe I should? But I have found a hosts file that blocks questionable sites helps a lot (see my previous post here e.g. https://someonewhocares.org/ho... ).

Tangentially, here is a shout out for using Mithril.js/HyperScript plus Tachyons.css for web UI developers who want to make low-footprint quick-to-load-and-run sites that are also easy to refactor.

This is a hosts file I use to avoid some bad stuff: https://someonewhocares.org/ho...

Much thanks to Dan Pollock and others for creating and maintaining it!

Adblock Plus + http://someonewhocares.org/hos... make sure of that. If they can't connect connect to their CDNs they can't serve ads. Simple. I only see the "real face" of the Internet when someone asks me to fix their computer but that doesn't happen much anymore. Thank deity_of_choice.

Using plugins is a good idea, but I find killing the traffic further upstream is more effective.

I use a hosts file began with a seed file from http://someonewhocares.org/hos... it takes a bit of work. With an Android one can't use a host file without being rooted.

What I do is watch the traffic on my router (Asus AC66U), then use robtex.com to verify for a block. Yet this only works for local networking on Android. I find using airplane mode when playing a game effective - I'm old school and my security now days appears paranoid to many.

Or update your hosts file to use your loopback IP address for the spy domains, like the last part of this hosts file.

Google blocks AdAway and is working much harder to prevent root. This jailing of the user is meant to force the use of the app store which allows them to monetize personal data (being "scrubbed" (year right)) and targeted marketing.

When apps that help to truly make your experience secure ( such as adaway that use fdroid and require root) by blocking horrible ads, scumware, malware, and other trash used by marketing on the internet.

I use various lists just on hosts via android and dns creating blackhole zones with these lists:
https://adaway.org/hosts.txt
http://adaway.sufficientlysecu...
http://hosts-file.net/ad_serve...
https://pgl.yoyo.org/adservers...
http://sysctl.org/cameleon/hos...
http://winhelp2002.mvps.org/ho...
http://www.mvps.org/winhelp200...
http://someonewhocares.org/hos...

Fanboy has some good lists as well

A lot of these lists are not for blocking ads but for blocking really bad content from coming into your browsing experience.

When Google and Apple actively prevent me from cleaning up this rubbish on a device I own and they kill all apps that attempt to do any of this and they remove all the hooks from the OS to allow us to do this its really a poor situation.

Now I have to worry about fdroid going away while Google claims this is a fight against amazon - scamazon. As much as I dislike Bezos and Scamazon and want Google to keep them with a better offering, banning 3rd party appstores and apps is a bad idea because its the only way we can bypass the draconian and ridiculous "rules" the official rules of either Apple or Google app stores force on developers. There are a lot of useless apps out there but they have banned many useful ones because they conflict with their interests and not with safety or security.

There's a curated hosts file here that contains a section for blocking domains used for Windows 10 reporting, if that's your thing:

http://someonewhocares.org/hos...

There are also several domains relating to Google and Apple.

If you have a small list of several domains you want to block, you can probably just search for hosts files and include several of those domains as additional keywords.

As an old-schooler, I've been using a modified hosts file. Are there any distinct advantages to using ad-blocking software over a hosts file?

Ad-blocking software updates the list automatically. Typically some sort of script needs to be used to do this with a host file.

I've been thinking about switching to the host method myself. I'm looking to use the very host file you posted on my router. Since I am a networking novice, I haven't figured out how to do that yet.

As an old-schooler, I've been using a modified hosts file. Are there any distinct advantages to using ad-blocking software over a hosts file?

See also: http://someonewhocares.org/hos... http://pgl.yoyo.org/adservers/... (not hosts formatted: https://spam404bl.com/spam404s... and http://mirror2.malwaredomains.... ) I'm using a shell script to aggregate those into a blacklist used by dnsmasq for my LAN (altough it is somewhat discouraging to see how often my android devices tries to phone home when on my wifi).

http://someonewhocares.org/hos...

0.0.0.0 a-0001.a-msedge.net
0.0.0.0 choice.microsoft.com
0.0.0.0 choice.microsoft.com.nstac.net
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 df.telemetry.microsoft.com
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 oca.telemetry.microsoft.com
0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
0.0.0.0 pre.footprintpredict.com
0.0.0.0 redir.metaservices.microsoft.com
0.0.0.0 reports.wes.df.telemetry.microsoft.com
0.0.0.0 services.wes.df.telemetry.microsoft.com
0.0.0.0 settings-sandbox.data.microsoft.com
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 sqm.df.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com
0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
0.0.0.0 ssw.live.com
0.0.0.0 statsfe1.ws.microsoft.com
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com
0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
0.0.0.0 telemetry.appex.bing.net
0.0.0.0 telemetry.microsoft.com
0.0.0.0 telemetry.urs.microsoft.com
0.0.0.0 vortex.data.microsoft.com
0.0.0.0 vortex-sandbox.data.microsoft.com
0.0.0.0 vortex-win.data.microsoft.com
0.0.0.0 watson.live.com
0.0.0.0 watson.microsoft.com
0.0.0.0 watson.ppe.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com
0.0.0.0 watson.telemetry.microsoft.com.nsatc.net

I spent about three days trying to get APK Hosts to work. I downloaded the file, consulted the tutorials, read the not-so-fine manual, and came up bupkiss.

So I downloaded a hosts file from Someone Who Cares and did it myself.

I was looking at this recently; this should turn off and block much of it:

Turn off CEIP, Uninstall updates, and then hide telemetry updates to prevent re-install:
http://www.pcworld.com/article...
Note: my "CEIP" setting was opted-out, but I still received two of those updates. So the "you don't get these updates if you're not in CEIP" assertions are incorrect, at least in my case.

Turn off CEIP reporting services:
https://pubs.vmware.com/view-5...

I kept having that "Update Windows 10" (GWXUX) service crash, so I turned it off using the registry update at the end of this article, leaving myself the opportunity to reverse the process and upgrade later if desired:
http://www.howtogeek.com/21885...

If you want to block windows 10 telemetry using a quick and dirty private DNS server, along with ad and malware blocking, install dnsmasq on a computer (maybe a raspberry pi if you're going for cheap, I'm using a VM on a test bed computer in bridged mode for this experiment):
https://www.linux.com/learn/tu... ...and block using an amalgamation of HOSTS files from here:
https://github.com/StevenBlack...

It's a python script that gets a few HOSTS files on the net and de-duplicates them into a mega crap-blocker list. The resulting list includes tens of thousands of DNS lookups that will be blocked at the perimeter of your network, so it could cause some web pages or software to break they depend on sites blocked by these lists. You can prepare you own windows 10 specific HOSTS file using entries from http://someonewhocares.org/hos... and those listed in articles about this issue if you feel paranoid. Windows can side-step your hosts file, but not your DNS server!

Stating the obvious: you'll want to leave the quick and dirty DNS behind your firewall/router, not expose it to the Internet.

I've been copying and pasting this into my hosts file every couple months on top of using ad block. I haven't seen adverts in a long time. http://someonewhocares.org/hos...

Whats the difference with Dan Pollock's hosts file? http://someonewhocares.org/hos...

the list i use only blocks known ads.

And those ads will be blocked, by editing it yourself your taking the bias out of the one who made the list, and blocking what you want blocked. Mine started from http://someonewhocares.org/hos... years ago and now at 144272 lines, yes it's huge but effective.

I have disabled the DNS Client service (Windows) as it can cause problems.

This is a small grab from the top of my HOSTS file these are my private blocks something you won't download from any list.

Addthis.com was added just yesterday use https://www.robtex.com/ it's a very good address to see what goes on here. All points end at addthis.com but through Google addresses and lots of them; by being an end point it doesn't affect Google access in any way.

127.0.0.1 addthis.com #social site alert
127.0.0.1 S7.addthis.com #social site alert
127.0.0.1 googleleads.g.doubleclick.net
127.0.0.1 fls.doubleclick.net
127.0.0.1 apis.google.com
127.0.0.1 acdseeonline.com #Acdsee auth check
127.0.0.1 dp.g.doubleclick.net #duh
127.0.0.1 regexbuddy.com # regexbuddy
127.0.0.1 intouch.arcsoft.com #Scanner Program
127.0.0.1 right10.com
127.0.0.1 arcsoft.com #Scanner Program
127.0.0.1 facebook.com

(When I run my Scanner it likes to phone home, I don't need that)

I used http://someonewhocares.org/hos... for my hosts file. Some guy on /. had it in their sig.

APK is a tool, and I wouldn't trust him with any amount of access to my files.

Using noscript does lead to some compatibility/useability issues, as a lot of the interactive crap built into websites works via calling scripts from other sites. There is an option in the noscript toolbar button to temporarily enable scripts from individual sites. By carefully allowing temp loading of scripts from (non-social media) partner or CDN domains, usually most of the functionality can be regained, while still not loading the tracking scripts from social media sites.

For the /etc/hosts part, there is a tutorial that covers multiple operating systems here. Another alternate hosts file, minus the turorial part, can be found here.

From 12 reputable & reliable known sources in the security community.

APK

P.S.=> http://hosts-file.net/hphosts-...
http://hosts-file.net/ad_serve...
http://mirror1.malwaredomains....
http://someonewhocares.org/hos...
http://www.malwaredomainlist.c...
http://winhelp2002.mvps.org/ho...
http://www.malwareurl.com/
http://www.malware.com.br/cgi/...
http://hostsfile.org/Downloads...
http://hostsfile.mine.nu/hosts...
http://pgl.yoyo.org/as/serverl... ... apk

http://someonewhocares.org/hos...

Re-read what I wrote. I didn't say Everything works in Chrome, I said Chrome Just Works on everything I run it on.

I don't care what features a browser has; if it's using large bold fonts and fear-mongering fraidy-text to try to goad me into upgrading my operating system so I can upgrade my browser, I'm going to switch to a browser that runs on the OS that I'm using and doesn't cry about it.

It turns out I don't miss greasemonkey all that much - I just shut off javascript on any website that feels like it's taking forever to do nothing. It's a steadily growing list but I'm not actually missing anything. Oh, I can't read the article because your content farm grabs it from somewhere else via javascript? Oh, I can't read the comments? Oh, I can't load your video ads or your video "content"? Man, you really don't want me around.

The fact that the internet has gotten progressively less useful over the last decade isn't a problem that Chrome or Firefox can solve. It's their job to render the garbage... and it's the job of the hosts file to keep it from getting to the browser in the first place.

Actually, no. Web surfing involves visiting a multitude of sites. Whitelisting would be painstakingly difficult, especially with the wife. Even whitelisting cookies is tedious, but cookies are what you should be whitelisting. After your accept all the cookies you need (bank, Slashdot, etc...) then block the rest. Simply visiting a web site is no reason to accept a cookie. If you can identify any sites to block (DoubleClick) then blacklisting is the way to go. We're not talking about a server here, it is a web browser. Imagine whitelisting 20 sites per hour while shopping for a pair of shoes.
What I do is to identify what sites are serving me ads, surf those sites while capturing packets using your favorite tool (NetworkTrafficView from Nirsoft if using Windows is easy) and block those sites using your firewall (IPs) and/or hosts file (FQDNs). I haven't seen a DoubleClick ad in years. In Windows my hosts file looks like this:
0.0.0.0 ad.doubleclick.net
0.0.0.0 ad.uk.doubleclick.net
0.0.0.0 ad.n2434.doubleclick.net
0.0.0.0 doubleclick.net
0.0.0.0 a.doubleclick.net
The Slashdot filter made me cut quite a bit out, but you get the idea.
This work has already been done and gets updated for you here: http://someonewhocares.org/hos...
My Windows Firewall is more extensive. I block massive subnets in Russia, Ukraine, and China (ex. LACNIC Latin American and Caribbean 190.0.0.0/8). This is all for a laptop that leaves the house. For an in-home solution you should get a better router and block them at the gateway so your iPad is safe too. pfSense is very flexible, but DD-WRT can do some neat tricks.

I just edit my hosts file. http://someonewhocares.org/hos...

"I use the same host file everyone else uses http://someonewhocares.org/hos... and I think them for putting it up so I dont have to compile it myself." - by Anonymous Coward on Thursday December 04, 2014 @11:41AM (#48523409)

You use someonewhocares' hosts file? Guess what: I use it in APK Hosts File Engine 9.0++ 32/64-bit too (along with 11 others in the security community) - why?

* NO 1 SINGLE SITE GETS THEM ALL or THE SAME ONES OTHERS CAN & DO (& some, like that one, do not update as frequently as do others, mind you)...

APK

P.S.=> Thus, you use hosts files also, but you are NOT getting as good a hosts file as is possible - fact!

... apk

I've seen you post this info a few times before it seems...
Got me thinking about the hosts option.
So I use the one listed here
and still use ad-block plus, script block, etc;

I'm curious why you post your info as AC...?

"You post unwanted promotional messages. Unwanted promotional messages are spam. You are therefore a spammer." - by raymorris (2726007) on Saturday August 09, 2014 @11:56AM (#47637495)

Here's 1 of 20++ evidences in 100's on /. posting on hosts to the contrary (vs you calling others asking honest questions of you here if you work for or do work for advertisers and their affiliates), spammers, in your quoted words above:

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hos... and http://winhelp2002.mvps.org/ho... FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

So what's that you said raymorris?

I use this on my Android device with AdAway with tremendous success. I also use Android Firewall with some custom rules to block annoying apps from trying to send my data through servers in China, Romania, etc.

Here's my AdAway custom lists:

http://adaway.org/hosts.txt
  http://hosts-file.net/ad_serve...
  http://pgl.yoyo.org/adservers/...
  http://someonewhocares.org/hos...
  http://winhelp2002.mvps.org/ho...

Use these, and you'll have a nice, clean, tight setup. I also use Squid on my LAN, and my router is configured to send every packet through Squid (custom iptables rules on the router; a Buffalo Wireless running dd-wrt), and on the Squid side, I block about 12,000 separate ad URLs, domains and sites, so again, the experience for anyone on my segment, is nice and clean and fast.

The side benefit of Squid, is that I can see every single request, phone home, ping, malicious or otherwise, that my devices try to do, and I can permit, prohibit, redirect or block entirely based on schedule, as I wish.

You'd be surprised how chatty a standard iPhone and Android device are, without "training" on the Squid/AdAway side.

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hos... and http://winhelp2002.mvps.org/ho... FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

APK

P.S.=> Continued in my next post, outnumbering your b.s. 110++:1 as the ratio in MY favor, proving YOU, wrong - so "argue with the numbers", troll... apk

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hos... and http://winhelp2002.mvps.org/ho... FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

That's 4 of 100++...

APK

P.S.=> Per my subject-line above? Addendum: Argue with the numbers... apk

http://winhelp2002.mvps.org/hosts.txt
http://pgl.yoyo.org/as/serverlist.php?showintro=0;hostformat=hosts
http://someonewhocares.org/hosts/

0.0.0.0 is invalid, so should cause an immediate fail without attempting to connect. If you run a webserver on your computer, a loopback address may actually hit the webserver and require a response.

0.0.0.0 is linux format, 127.0.0.1 is another format and the one I use; the top of the HOSTS file determines which is used
0.0.0.0. LocalHost
or
127.0.0.1 localHost

There's some who claim "127.0.0.1 on some machines this may run minutely faster" http://someonewhocares.org/hosts/zero/

So 0.0.0.0 www.login.facebook.com would go to LocalHost or you -satisfying the request be it you or a link from a web page.

The HOSTS file is a routing file. you can also use for shortcuts like 74.125.235.33 findnow - typing findnow in the address bar would take you to Google.

A HOSTS file is simple tracking, malware protection that even speeds up page loadings by removing the non article stuff.

Except I completely control it locally @ the fastest level of operations possible (the TCP/IP stack running in PnP designed kernelmode/rpl 0/ring 0 operations) as a filter:

---

APK Hosts File Engine 5.0++ 32/64-bit:

http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74

---

(What custom hosts files do for me in added value for better speed, security, reliability, & even anonymity to an extent is listed there in 16 discrete points...)

* "Auto-Magically" populating & creating a custom hosts file from 14++ reputable & reliable sources for data for protecting vs. known malicious sites/servers/hosts-domains:

http://hosts-file.net/?s=Download
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://www.malware.com.br/cgi/submit?action=list_hosts_win_0000
http://mirror1.malwaredomains.com/files/
http://hostsfile.org/hosts.html
http://someonewhocares.org/hosts/
http://www.malwareurl.com/
http://sysctl.org/cameleon/hosts
http://pgl.yoyo.org/as/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext
http://winhelp2002.mvps.org/hosts.htm
http://hostsfile.mine.nu/downloads/
http://safeweb.norton.com/buzz
https://zeustracker.abuse.ch/monitor.php?filter=lastupdated
http://amada.abuse.ch/palevotracker.php

APK

P.S.=> Best part is, it's not only of value for security, but also for added:

---

1.) Speed (via blocking adbanners as well as bogus sites online, but also via "hardcoding" your favorite sites into it for FASTER IP address resolution locally than from remote DNS servers (which have faults in them, many of which remain unpatched vs. the Kaminsky DNS redirection poisoning flaw, 1/2 a decade++ later AFTER its discovery -> )

2.) Reliability (vs. said unpatched flaw above OR downed remote DNS servers)

3.) To an extent, anonymity (vs. DNS request logs)

---

... apk

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

2.) Adblock blocks ads (not anymore apparently, lol:

Adblock Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter=online [abu

20++ ADVANTAGES OF HOSTS FILES OVER HOST FILES &/or HOST FILE ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do HOST FILEing for ANY webbrowser, email program, etc. (any webbound program).

2.) HOST FILE blocks ads (not anymore apparently, lol:

HOST FILE Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/HOST FILE-plus-to-offer-acceptable-ads-option )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an HOST FILE addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) HOST FILE doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) HOST FILE won't get you to your favorite sites if a HOST FILE goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) HOST FILE doesn't allow you to hardcode in your favorite websites into it so you don't make HOST FILE calls and so you can avoid tracking by DNS request logs, hosts do (HOST FILEs are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like HOST FILE does while it parses a webpages' content, nor as much as a HOST FILE does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than HOST FILEs can by FAR (by saving the roundtrip inquiry time to a HOST FILE & back to you).

8.) HOST FILE doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

2.) Adblock blocks ads (not anymore apparently, lol:

Adblock Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter=online [abu

20++ ADVANTAGES OF HOSTS FILES OVER HOST FILES &/or HOST FILE ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do HOST FILEing for ANY webbrowser, email program, etc. (any webbound program).

2.) HOST FILE blocks ads (not anymore apparently, lol:

HOST FILE Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/HOST FILE-plus-to-offer-acceptable-ads-option )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an HOST FILE addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) HOST FILE doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) HOST FILE won't get you to your favorite sites if a HOST FILE goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) HOST FILE doesn't allow you to hardcode in your favorite websites into it so you don't make HOST FILE calls and so you can avoid tracking by DNS request logs, hosts do (HOST FILEs are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like HOST FILE does while it parses a webpages' content, nor as much as a HOST FILE does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than HOST FILEs can by FAR (by saving the roundtrip inquiry time to a HOST FILE & back to you).

8.) HOST FILE doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

2.) Adblock blocks ads (not anymore apparently, lol:

Adblock Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option [slashdot.org] )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter=o

20++ ADVANTAGES OF HOSTS FILES OVER HOST FILES &/or HOST FILE ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do HOST FILEing for ANY webbrowser, email program, etc. (any webbound program).

2.) HOST FILE blocks ads (not anymore apparently, lol:

HOST FILE Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/HOST FILE-plus-to-offer-acceptable-ads-option [slashdot.org] )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an HOST FILE addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) HOST FILE doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) HOST FILE won't get you to your favorite sites if a HOST FILE goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) HOST FILE doesn't allow you to hardcode in your favorite websites into it so you don't make HOST FILE calls and so you can avoid tracking by DNS request logs, hosts do (HOST FILEs are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like HOST FILE does while it parses a webpages' content, nor as much as a HOST FILE does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than HOST FILEs can by FAR (by saving the roundtrip inquiry time to a HOST FILE & back to you).

8.) HOST FILE doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/moni

20++ ADVANTAGES OF HOSTS FILES OVER DNS SERVERS &/or ADBLOCK ALONE for added "layered"/"defense-in-depth" security + SPEED:

1.) HOSTS files are useable for all these purposes because they are present on all Operating Systems that have a BSD based IP stack (even ANDROID) and do adblocking for ANY webbrowser, email program, etc. (any webbound program).

2.) Adblock blocks ads (not anymore apparently, lol:

Adblock Plus To Offer 'Acceptable Ads' Option

http://news.slashdot.org/story/11/12/12/2213233/adblock-plus-to-offer-acceptable-ads-option [slashdot.org] )

in only browsers & their subprogram families (ala email), but not all, or, all independent email clients, like Outlook!)

Disclaimer: Opera now has an AdBlock addon (now that Opera has addons above widgets), but I am not certain the same people make it as they do for FF or Chrome etc..

3.) Adblock doesn't protect email programs external to FF, Hosts files do. THIS IS GOOD VS. SPAM MAIL or MAILS THAT BEAR MALICIOUS SCRIPT, or, THAT POINT TO MALICIOUS SCRIPT VIA URLS etc.

4.) Adblock won't get you to your favorite sites if a DNS server goes down or is DNS-poisoned, hosts will (this leads to points 5-7 next below).

5.) Adblock doesn't allow you to hardcode in your favorite websites into it so you don't make DNS server calls and so you can avoid tracking by DNS request logs, hosts do (DNS servers are also being abused by the Chinese lately and by the Kaminsky flaw -> http://www.networkworld.com/news/2008/082908-kaminsky-flaw-prompts-dns-server.html [networkworld.com] for years now). Hosts protect against those problems via hardcodes of your fav sites (you should verify against the TLD that does nothing but cache IPAddress-to-domainname/hostname resolutions via NSLOOKUP, PINGS, &/or WHOIS though, regularly, so you have the correct IP & it's current)).

* NOW - Some folks MAY think that putting an IP address alone into your browser's address bar will be enough, so why bother with HOSTS, right? WRONG - Putting IP address in your browser won't always work IS WHY. Some IP adresses host several domains & need the site name to give you the right page you're after is why. So for some sites only the HOSTS file option will work!

6.) Hosts files don't eat up CPU cycles like AdBlock does while it parses a webpages' content, nor as much as a DNS server does while it runs. HOSTS file are merely a FILTER for the kernel mode/PnP TCP/IP subsystem, which runs FAR FASTER & MORE EFFICIENTLY than any ring 3/rpl3/usermode app can.

7.) HOSTS files will allow you to get to sites you like, via hardcoding your favs into a HOSTS file, FAR faster than DNS servers can by FAR (by saving the roundtrip inquiry time to a DNS server & back to you).

8.) AdBlock doesn't let you block out known bad sites or servers that are known to be maliciously scripted, hosts can and many reputable lists for this exist:

GOOD INFORMATION ON MALWARE BEHAVIOR LISTING BOTNET C&C SERVERS + MORE (AS WELL AS REMOVAL LISTS FOR HOSTS):

http://someonewhocares.org/hosts/ [someonewhocares.org]
http://hostsfile.org/hosts.html [hostsfile.org]
http://winhelp2002.mvps.org/hosts.htm [mvps.org]
http://hostsfile.mine.nu/downloads/ [hostsfile.mine.nu]
http://hosts-file.net/?s=Download [hosts-file.net]
https://zeustracker.abuse.ch/monitor.php?filter=online [abuse.ch]

"I use a "white list" DNS server written w/ "python" running on my computer. python => smaller than an /etc/hosts file, less memory and i/o than an /etc/hosts file, & NO BUGS (pythons eat bugs lol => true fact!)" - BQL by Anonymous Coward on Monday January 07, @03:34PM (#42509307)

1.) You use Python interpreted SLOW code (many orders of magnitude slower than a single self-contained TRUE 'stand-alone' executable, let alone DRIVERS (tcpip.sys & the local kernelmode diskcaching subsystem, which power mine - far, Far, FAR FASTER... tons so!)

2.) You use USERMODE/ring 3/rpl 3 SLOW code (vs. tcpip.sys + the local kernelmode diskcaching subsystem) since PYTHON CAN'T DO KERNELMODE DRIVERS (many orders of magnitude faster than usermode, & certainly even moreso than your INTERPRETED SLOW python code).

3.) My 20 favorites @ THE VERY TOP OF MY HOSTS file outperforms hashtable indexes (up to 2++ million entries). You don't deny this - the math proves me right!

---

A.) You also CLAIM a 'whitelist' DNS list - what about blacklist for protection vs. KNOWN online threats? You WILL perform DNS lookups eventually, you know, and in recursive mode (more than potentially hazardous)!

B.) Your DNS locally IS in recursive mode, opening up the door to DNS-poisoning redirection too!

C.) Even I perform remote DNS lookups, albeit only perhaps 1 in every 100 lookups since I know where I go online & spend 95%++ of my time, & perform OCCASIONAL dns lookup queries, albeit, to FAST remote DNS servers NOT WRITTEN in SLOW INTERPRETED CODE, & that also filter vs. online malicious threats - yours doesn't apparently: YOU'RE LEAVING THE BARN DOOR OPEN TO "LET THE TRASH COME BLOWING IN"...

---

Here's what custom hosts files can do, for SPEED alone (from your own /. peers, & a security-expert from a division of SYMANTEC as well):

(Especially on the note of loads & parsing (which you claim is 'slow'))

---

SLASHDOT USERS EXPERIENCING MORE SPEED USING HOSTS FILES QUOTED VERBATIM:

---

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ and http://winhelp2002.mvps.org/hosts.htm FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them to take forever to load. Regardless of its original intent, it's still a valid tool, when used judiciously." - by Bill Dog (726542) on Monday April 25, @02:16AM (#35927050)

"I have several notorious slow adservers in my /etc/hosts" - by jandrese (485) on Friday August 17 2007, @01:00PM (#20263547)

"They're visually annoying and distracting. They're a waste of bandwidth. Sometimes they're even noisy. I block them with a hosts file" - by Kris_J (10111) on Monday October 10 2005, @11:12PM (#13761572)

"Am I the only one that uses a hosts file? Takes care of more than just ads. It's to the point now that when I see ads, I'm shocked. I've had them blocked for years. They may be able to stop adblock, but good luck trying to outlaw a hosts file." - by mrbcs (737902) on Friday November 23, @06:59PM (#42077997)

"127.0.0.1's in my hosts file. Some shady ads do cause trouble, and similar methods can be used

"The hosts file edits you do are considered a "hacked up" non-solution. The wrong way to do things. It's not what the hosts file is intended for." - by Anonymous Coward on Thursday January 03, @01:43PM (#42464951)

Oh, really? See my subject-line above & this list of your peers' findings regarding custom hosts files usage:

---

77++ SLASHDOT USERS EXPERIENCING SUCCESS USING HOSTS FILES QUOTED VERBATIM:

---

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ and http://winhelp2002.mvps.org/hosts.htm FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

"Better than an ad blocker, imo. Hosts file entries: http://www.mvps.org/winhelp2002/hosts.htm " - by TempestRose (1187397) on Tuesday March 15, @12:53PM (#35493274)

"^^ One of the many reasons why I like the user-friendliness of the /etc/hosts file." - by lennier1 (264730) on Saturday March 05, @09:26PM (#35393448)

"They've been on my HOSTS block for years" - by ScottCooperDotNet (929575) on Thursday August 05 2010, @01:52AM (#33147212)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them to take forever to load. Regardless of its original intent, it's still a valid tool, when used judiciously." - by Bill Dog (726542) on Monday April 25, @02:16AM (#35927050)

"you're right about hosts files" - by drinkypoo (153816) on Thursday May 26, @01:21PM (#36252958)

"APK's monolithic hosts file is looking pretty good at the moment." - by Culture20 (968837) on Thursday November 17, @10:08AM (#38085666)

"I also use the MVPS ad blocking hosts file." - by Rick17JJ (744063) on Wednesday January 19, @03:04PM (#34931482)

"I use ad-Block and a hostfile" - by Ol Olsoc (1175323) on Tuesday March 01, @10:11AM (#35346902)

"I do use Hosts, for a couple fake domains I use." - by

Jorge, you can name me all you want, but there is no shame is using a hosts file to block DDoS Packets. I have a foolproof list that blows away your arguments.

P.S.=> There's other methods also, via native to OS tools for network-wide propogation of fresh clean updated hosts files that program yields IF you only installed it on a "central server" for clean hosts for all nodes/workstations/servers:

I.E.-> Centrally managed hosts files? Easy as pie via logons scripts, or parse of autoexec in Windows @ bootup via GPEdit & group policies company-wide!

OR

Using taskscheduler on each workstation/server node periodically

P.P.S.=> Of course, your HOSTS file will need to have the domain/hosts name of the C&C servers, & that you have to obtain for this to work vs. threats like bogus servers &/or maliciously scripted sites. Here's some good sources for that above & beyond mvps.org (I noted them above):

http://hosts-file.net/?s=Download
http://www.malwaredomainlist.com/hostslist/hosts.txt
http://mirror1.malwaredomains.com/files/ (justdomains here)
http://pgl.yoyo.org/as/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext
http://sysctl.org/cameleon/hosts
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
https://zeustracker.abuse.ch/monitor.php?filter=lastupdated
https://spyeyetracker.abuse.ch/monitor.php?filter=lastupdated
http://www.apkgoatsestylepersonalpics.com/hostsfiles.htm
http://www.malwareurl.com/
http://www.safer-networking.org/en/download/ (updater for Spybot "Search & Destroy" & it fortifies HOSTS files)

Those are some of my regular sources that are reputable & reliable for custom HOSTS file data populations vs. known threats online - I consolidate them here via programs I wrote that normalize/deduplicate repeated entries, sort/alphabetize the results, & change from larger + slower 127.0.0.1 (longer & loopback ops happen here) to the faster & smaller 0.0.0.0 (or even 0 on Windows 2000/XP/Server 2003): Enjoy!

... apk

P.P.P.P.S.=> There you go... it all works, GUI easily from my app, all the way out to any endpoint PC/Server on a LAN/WAN even... often as you like & CLEAN/FRESH too!

P.P.P.P.P.S=> It's good "layered-security"/"defense-in-depth" & does things AdBlock, DNS, & even firewalls can't (like speed up access to fav. sites + make them reliable in the event of DNS poisoning redirects or being "downed" even...) & gets P.P.P.P.P.P.S.=> back SPEED/BANDWIDTH users pay for out of pocket along with their POWER BILL too...

P.P.P.P.P.P.P.S.=> I skipped P.P.P.S=>

Per my subject-line above? Your /. peers thoughts on custom hosts files:

---

70++ SLASHDOT USERS EXPERIENCING SUCCESS USING HOSTS FILES QUOTED VERBATIM:

---

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ and http://winhelp2002.mvps.org/hosts.htm FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

"Better than an ad blocker, imo. Hosts file entries: http://www.mvps.org/winhelp2002/hosts.htm " - by TempestRose (1187397) on Tuesday March 15, @12:53PM (#35493274)

"^^ One of the many reasons why I like the user-friendliness of the /etc/hosts file." - by lennier1 (264730) on Saturday March 05, @09:26PM (#35393448)

"They've been on my HOSTS block for years" - by ScottCooperDotNet (929575) on Thursday August 05 2010, @01:52AM (#33147212)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them to take forever to load. Regardless of its original intent, it's still a valid tool, when used judiciously." - by Bill Dog (726542) on Monday April 25, @02:16AM (#35927050)

"you're right about hosts files" - by drinkypoo (153816) on Thursday May 26, @01:21PM (#36252958)

"APK's monolithic hosts file is looking pretty good at the moment." - by Culture20 (968837) on Thursday November 17, @10:08AM (#38085666)

"I also use the MVPS ad blocking hosts file." - by Rick17JJ (744063) on Wednesday January 19, @03:04PM (#34931482)

"I use ad-Block and a hostfile" - by Ol Olsoc (1175323) on Tuesday March 01, @10:11AM (#35346902)

"I do use Hosts, for a couple fake domains I use." - by icebraining (1313345) on Saturday December 11, @09:34AM (#34523012)

"It's a good write up on something everybody should use, why you were modded down is beyond me. Using a HOSTS file, ADblock is of no concern and they can do what they want."

"Your ads are worse that Microsoft's." - by Tarlus (1000874) on Thursday November 08, @01:29PM (#41921607)

Funny - the RESULT of my "ad" as you call it is better:

---

1.) Speed/Bandwidth
2.) Global protection (vs. browser addons like AdBlock &/or Ghostery - advertiser owned, crippled & tracking as they are now)
3.) "Layered Security"/"Defense-in-Depth"
4.) Reliability (vs. downed or "dns-poisoned" redirected DNS servers)
5.) Efficiency of ring 0/rpl 0/kernelmode operations (vs. far slower ring 3/rpl 3/usermode operations of browsers AND worsening it with another layer onto of THAT, in addons)
6.) Efficiency of C & Assembly code (vs. slower interpreted languages that are used in AdBlock)

---

& far, Far, FAR MORE vs. "the competition" in Adblock + Ghostery... would you like specifics? Ask! I can post them in seconds...

APK

P.S.=> Per my subject-line - Here's the thoughts, findings, & feelings of others custom hosts file users on /. (your peers) as well as ratings they've given my posts on custom hosts files vs. various threats online, and that of a security expert also for your reference:

---

70++ SLASHDOT USERS EXPERIENCING SUCCESS USING HOSTS FILES QUOTED VERBATIM:

---

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ and http://winhelp2002.mvps.org/hosts.htm FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

"Better than an ad blocker, imo. Hosts file entries: http://www.mvps.org/winhelp2002/hosts.htm " - by TempestRose (1187397) on Tuesday March 15, @12:53PM (#35493274)

"^^ One of the many reasons why I like the user-friendliness of the /etc/hosts file." - by lennier1 (264730) on Saturday March 05, @09:26PM (#35393448)

"They've been on my HOSTS block for years" - by ScottCooperDotNet (929575) on Thursday August 05 2010, @01:52AM (#33147212)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them

Per my subject-line above, see this -> http://tech.slashdot.org/comments.pl?sid=3239985&cid=41920163

* That troll "blew it" on Windows 8, hosts files, & Windows Defender already man... see the link above!

(However, per the OTHER part of my subject-line? It's the thought that counts, & YOU in particular? You're one of my FAVORITE users of custom hosts files... lol, because you're 1 of 100's here that use them, & I quote you when I put that information out in fact (you gave a hell of a rundown on them is why & what good they've done for you online)).

APK

P.S.=> In any event? Thank-You, & here's the others that have found hosts files useful as you do on /. (with your testimonial included also of course), as well as some posts of mine that were upmodded regarding custom hosts also (love your reply the best, & it's part of WHY it's "topmost")...:

---

70++ SLASHDOT USERS EXPERIENCING SUCCESS USING HOSTS FILES QUOTED VERBATIM:

---

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ and http://winhelp2002.mvps.org/hosts.htm FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"Ever since I've installed a host file (http://www.mvps.org/winhelp2002/hosts.htm) to redirect advertisers to my loopback, I haven't had any malware, spyware, or adware issues. I first started using the host file 5 years ago." - by TestedDoughnut (1324447) on Monday December 13, @12:18AM (#34532122)

"Better than an ad blocker, imo. Hosts file entries: http://www.mvps.org/winhelp2002/hosts.htm " - by TempestRose (1187397) on Tuesday March 15, @12:53PM (#35493274)

"^^ One of the many reasons why I like the user-friendliness of the /etc/hosts file." - by lennier1 (264730) on Saturday March 05, @09:26PM (#35393448)

"They've been on my HOSTS block for years" - by ScottCooperDotNet (929575) on Thursday August 05 2010, @01:52AM (#33147212)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them to take forever to load. Regardless of its original intent, it's still a valid tool, when used judiciously." - by Bill Dog (726542) on Monday April 25, @02:16AM (#35927050)

"you're righ

This is why having a good ad-blocking host file, is a good thing. Only with Windows 8 you have to disable Windows Defender from mucking with the host file.

"I have used host files and pac files in the past. Host files is *the* slowest way (up to 1/4th a second per lookup past 200k in the file). It is also broken in win7 and above as in some cases it can be ignored all together." - by Anonymous Coward on Thursday October 04, @04:20PM (#41552741)

Really? First of all - You're talking about a Ring 3/RPL 3/Usermode app LAYERED ONTOP OF A BROWSER (more complexity)...

Hosts files, by way of comparison?

Hosts files "RUN" IN A FAR FASTER & MORE EFFICIENT LAYER OF OPERATION: Ring 0/RPL 0/kernelmode (acting as a filter for the IP stack).

(So, you stating that hosts are SLOWER, especially once cached into RAM? LOL!)

---

Secondly:

I'll let others from /. show otherwise by THEIR experience using hosts files (for speed alone, & it does a HELL OF A LOT MORE THAN JUST THAT, & more + BETTER THAN ADBLOCK - which I'll also "get into" in my 'p.s.' below) which RADICALLY DIFFERS from yours:

---

8 SLASHDOT USERS EXPERIENCING SUCCESS USING HOSTS FILES QUOTED VERBATIM, ON SPEED (along with a security expert noting the same from SYMANTEC):

---

"I want my surfing speed back so I block EVERY fucking ad. i.e. http://someonewhocares.org/hosts/ and http://winhelp2002.mvps.org/hosts.htm FTW" - by UnknownSoldier (67820) on Tuesday December 13, @12:04PM (#38356782)

"this is not a troll, which hosts file source you recommend nowadays? it's a really handy method for speeding up web and it works." - by gl4ss (559668) on Thursday March 22, @08:07PM (#39446525)

"I use a custom /etc/hosts to block ads... my file gets parsed basically instantly ... So basically, for any modern computer, it has zero visible impact. And even if it took, say, a second to parse, that would be more than offset by the MANY seconds saved by not downloading and rendering ads. I have noticed NO ill effects from running a custom /etc/hosts file for the last several years. And as a matter of fact I DO run http servers on my computers and I've never had an /etc/hosts-related problem... it FUCKING WORKS and makes my life better overall." - by sootman (158191) on Monday July 13 2009, @11:47AM (#28677363)

"I actually went and downloaded a 16k line hosts file and started using that after seeing that post, you know just for trying it out. some sites load up faster." - by gl4ss (559668) on Thursday November 17, @11:20AM (#38086752)

"I'm currently only using my hosts file to block pheedo ads from showing up in my RSS feeds and causing them to take forever to load. Regardless of its original intent, it's still a valid tool, when used judiciously." - by Bill Dog (726542) on Monday April 25, @02:16AM (#35927050)

"Web browsing is really very fast, provided you turn off advertising. I set them up with a combo of Ad Block Plus on Firefox, and a customised hosts file. They can't believe the difference." - by VShael (62735) on Monday June 29 2009, @11:35AM (#28514655)

"I have several notorious slow adservers in my /etc/hosts" - by jandrese (485) on Friday August 17 2007, @01:00PM (#20263547)

---

Then, there is also the words of respected security expert, Mr. Oliver Day, from SECURITYFOCUS.COM to "top that all off" as well:

A RETURN TO THE KILLFILE:

http://www.securityfocus.com/columnists/491

Some "PERTINENT QUOTES/EXCERPTS" to back up my points with (for starters):

---

"The host file on my day-to-day laptop

"I get exactly the same effect with my Hosts file" - by fast turtle (1118037) on Sunday September 30, @03:00PM (#41507585)

Excellent - You get better:

1.) Speed/Bandwidth
2.) "Layered-Security"/"Defense-In-Depth"
3.) Reliability (vs. downed or dns-poisoned redirected dns servers)
4.) Anonymity (to an extent, vs. DNS request logs + DNSBL)
5.) MULTI-PLATFORM ability to do the same (think smartphones, you can apply hosts there too)
6.) MORE EFFICIENT OPERATIONS (ring 0/rpl 0/kernelmode filtering @ THE IP STACK LEVEL, vs. ring 3/rpl 3/usermode layered on MORE INEFFICIENCY in browser addons)
7.) The ability to SHIELD OTHER APPLICATIONS from ads & threats (I used to do this using hosts for Opera before it was freewares, & Ubuntu users can do the same now (since part of it's adbanner sponsored now)

& FAR MORE... good choice on YOUR part, but... there's more you can do with hosts than merely adblocking (read on)!

---

"and for those that don't understand how they work, it's pretty god damn simple." - by fast turtle (1118037) on Sunday September 30, @03:00PM (#41507585)

They are, & SIMPLER than editing adblock lists, that is certain... hosts are just a text file with line records you can add/remove/alter etc. as you wish with tools you already own in text editors, but also for more?

Well, you can use the app I wrote that I posted about earlier... there's a reason I am noting this, since you are NOT USING custom hosts files TO THEIR FULL POTENTIAL!

Seriously...

(The app handles filtering them vs. comments & other bloating crap hosts files makers put in (they mean well, it's usually documentation, except MVPS which puts WAY TOO MUCH B.S. in theirs), importing hosts data from reputable & reliable sources, deduplication of hosts repeat bloating entries + making the hosts use a MORE EFFICIENT parse by using smaller blocking addresses (0.0.0.0 vs. 127.0.0.1)... & more!

---

"I never make the connection to the god damn server - no ad/malware or other crap to see. " - by fast turtle (1118037) on Sunday September 30, @03:00PM (#41507585)

"EXACTAMUNDO" & that?

That also EXTENDS TO MALWARE LADEN SITES/SERVERS/HOSTS-DOMAINS as well as adbanners!

So - that's where you aren't using hosts to their FULL potential here (as well as the fact you can "hardcode in" your FAVORITE SITES into it, making them resolve even FASTER than remote DNS can do!)

My "APK Hosts File Engine 5.0++" does all that for you, & "automagically" IF YOU WISH (it has the option to run automatically)...

If you opt NOT to use my app? Here's the sources I import from for your reference:

http://www.mvps.org/winhelp2002/hosts.htm
http://someonewhocares.org/hosts/
http://hostsfile.org/hosts.html
http://hostsfile.mine.nu/downloads/
http://hosts-file.net/?s=Download
https://zeustracker.abuse.ch/monitor.php?filter=online
https://spyeyetracker.abuse.ch/monitor.php
http://ddanchev.blogspot.com/
http://www.malware.com.br/lists.shtml
http://www.stopbadware.org/
Spybot "Search & Destroy" IMMUNIZE feature (fortifies HOSTS files with KNOWN bad servers blocked)

---

"As to updating the damn thing every week? I don't do that." - by fast turtle (1118037) on Sunday September 30, @03:00PM (#41507585)

Well, per what I wrote above? Vs. mal