Slashdot Mirror
Yahoo Advertising Serves Up Malware For Thousands
wjcofkc writes "Thousands of users have been affected by malicious advertisements served by ads.yahoo.com. The attack, which lasted several days, exploited vulnerabilities in Java and installed malware. The Netherlands based Fox-IT estimates that the infection rate was at about 27,000 infections per hour. In response to the breach in security, Yahoo issued the following statement, 'At Yahoo, we take the safety and privacy of our users seriously. We recently identified an ad designed to spread malware to some of our users. We immediately removed it and will continue to monitor and block any ads being used for this activity.' While the source of the attack remains unknown, Fox-IT says it appears to be 'financially motivated.' The Washington Post cites this incident as a reminder that Java has become an Internet security menace."
As far as I've been concerned, Java and Javascript have both always been security menaces.
Letting web-sites and advertisers execute code has been a recipe for problems for a long time, which is why many of us here likely already block it.
This is just another example of why we can't trust the companies doing the advertising, because they're part of the problem -- if Yahoo is serving malware, Yahoo can't be trusted.
Lost at C:>. Found at C.
They'll continue to monitor, as in do something about a malicious ad once someone else identifies it and spreads the word.
Hey samzenpus, you better have another job lined up.
Netcraft confirms http://beta.slashdot.org is dying!
This wouldn't be an issue if they could only serve image or text only ads. Possible image based exploits can easily be prevented by re-saving the uploaded image so that the image only contains valid content.
But no, ad farms want to provide functionality to reach maximum annoyance for the users. You can blame Java all you want, but it's not the source of this problem.
Source unknown? Bullshit! Yahoo didn't run the ads without payment. Payment == traceable. Or is Yahoo accepting Bitcoins now?
It has been my contention that when websites no longer serve malware through Ads, then they can start complaining that users blocks ads. This is not an uncommon occurrence, even for large websites, and the fix is not always immediate. I recall not that long ago when the New York Times was serving malware for the entire weekend.
"She's a scientist and a lesbian. She's not going to let it slide." Orphan Black
a reminder that Java has become an Internet security menace
Java has always been a security menace.
Trolling is a art,
Java is a much safer language than say C because of the built in checks. It's the proprietary crappy browser plugins that make this kind of attacks possible.
... using ad blocking and/or host files to deep-six ad networks not only produces a nicer user experience, but it's a valid security measure.
Trusting the web site is not enough. You have to trust the ad network too. Since any Joe Schmoe can buy ad space on an ad network, trusting the ad network means you're trusting Joe Schmoe.
I don't know about you guys, but I don't.
--
BMO
New Yahoo Mail = complete unusable dog shit
New Flickr = complete fuck up! They don't even read user feedback.
New Ad delivery = source of malware! Even porn sites don't do that.
you should disable Java (but not JavaScript, a completely separate technology) as a precaution.
I lol'd. Javascript SO SECURE. NO HACK.
I kept my old Yahoo webmail accounts but use Thunderbird to read those as well as Gmail. Avoids dealing with asstastic webmail page layout as well as being bothered with adverts.
"This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
If that's the whole statement, then wow... that's really pathetic.
Spent All My Mod Points
Googles contentious rip off of Java is called Dalvik. In what aspects is it different than JAVA for security?
Some drink at the fountain of knowledge. Others just gargle.
a reminder that Yahoo has become an Internet security menace
" Fox-IT says it appears to be 'financially motivated" (Insert Nicolaw Cage "you don't say" pic here) Also, Yahoo has the billing info, IP address and username of the fine fellows behind this. Can't they sue them, or at least publish that info? Oh, I forgot, that would be "aggravating a partner" which is bad for the bottom line...
For security reasons, this why I only browse the web with Internet Explorer 6 with Java disabled.
Priest: "Universe from nothing, no laws of physics, sped up time"+ huge discrepancies. Creationism? No. Big Bang Theory
Close call.
For the idiots who say with a smile they do not run AV software and think they are malware free because they don't click on anything, I told you so.
Some people even on Slashdot do not have a basic understanding of online security. Yes Linux Trojans exist too because like Mac users you all think you are invulnerable.
Basics: if you must use Java disable it in your browsers or put it in intranet zone only if you use IE at work. Disable adobe reader from launching automatically. Use foxit if you can or disable it in browser launching in which I do. Use flashblock and adblock. Even IE has adblock these days. Last do not run a browser with an admin/root account! In Windows I use a separate limited/standard account and do not browse as root in Linux. Doh. Run Windows updates!! But they may break my apps .... Please. I never had an issue and my security is worth it. Do that and these attacks will be plugged 90% of the time.
Do these in addition to not clicking on shit and then your system will be pretty darn secure.
http://saveie6.com/
> "The Washington Post cites this incident as a reminder that Java has become an Internet security menace."
That should read "The Washington Post cites this incident as a reminder that advertising has become an Internet security menace."
Adblock+ -- part of a sensible security policy.
Ian Ameline
The moment that Yahoo allowed advertisers to use java they knew that minimally those ads would be used to annoy the crap out of the users. If your ad is a static picture with a clickable link then you don't need Java. What you need java for is to start prying into the user's business. Animations, sound, geolocations, saving data to the user's machine. So any "legitimate" ad using Java is halfway to being malware already. Plus why use Java instead of Flash? Generally ads should be made by Graphic artist types who are more familiar with Flash. Thus the primary reason to use Java is to access some feature that flash has blocked in Flash.
So if your goal with a Java ad is to circumvent something that Adobe has blocked then it probably should remain blocked. On top of that most users have turned off Java so it can't be to reach a wider audience.
So when Yahoo allows advertisers to use Java they knew perfectly well that the advertisers were up to no good whatsoever. Their acting surprised that some of the scumbags took it even further is total BS.
Basically at this point, anyone who has Java turned on in the browser is the same as having a house with a weeks worth of newspapers stacked up at the front door. Effectively a greeting card inviting the criminals in.
Yahoo Advertising Serves Up Malware For Thousands
The attack, which lasted several days... the infection rate was at about 27,000 infections per hour.
That's nearly 2 million at least. C'mon Slashdot, it's not like you to supply a less sensational headline than necessary.
systemd is Roko's Basilisk.
The source is a Yahoo ad customer. Do they not know who pays them? Or do they not want to lose a paying customer by outing them?
The ad didn't contain a Java applet.
It directed people to a website that then delivered the malware. Apparently it automatically redirected the browser, but that hasn't been confirmed.
So Yahoo allow Javascript in the ads, not Java.
Java zero days are easily avoided by using "click to play", which does exactly what it sounds like: disable flash and java applets until you click them. In Chromium, this is easily enabled in Settings -> Show advanced settings -> under "Privacy", Content Settings -> choose "Click to play" under Plug-ins.
Java (and Flash likewise) has never been safe, and it's a shame that click to play is not the default. Additionally, animated ads are often Flash or Java-based, so this also kills distracting movies.
And people still whinge about users installing adblocking software? As far as I'm concerned a computer without adblock (at a hosts file level) is a security risk.
We can't get any money to promote our site if we're not infecting every machine that visits!
As usual (unfortunately). Both the article and the summary are pathetic examples of journalism which should try to at least inform.
For instance, it would be useful to know (at a minimum) which OSs, browsers, etc are vulnerable, whether any of the virus detection programs will block or remove the malware and what effects the malware has on systems when they are infected.
In other words, this article is just "scareware" warning about some unspecified threat to do something bad to somebody and no idea who, what, when or where.
I don't read your sig. Why are you reading mine?
Hence why I advise people to install AdBlock on their browsers. The way things have been for the pas few years, it's probably more effective than antivirus software. (Before you flame me, I am speaking tongue-in-cheek. You really should have both.)
People still visit yahoo's website? How quaint!
The big three browsers can trivially block Java, through something as simple as "click to play", or "always launch plugins from this site". Any browser that auto-executes stuff by default is broken.
On the other hand, I've had a malware distribution attempt via Javascript. It's certainly designed to attack Chrome, since it wipes the previous page content and URL, replacing it with its own.
Oh, and a trivial Javascript exploit that browsers took 10+ years to fix.
"exploited vulnerabilities in Java and installed malware"
"exploited vulnerabilities in Java COMMA and installed malware"
Otherwise it could be taken to mean the the vulnerabilities were also in 'installed malware'. Duh. Americans.
Adblock plus. Is all you need to know. In settings dont allow some.
should not default to allow any. Let the use take the risk in allowing do not assume it for me unless your going to pay for my damages.
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
* Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
The Ask.com annoyware comes straight from Oracle when you download Java from them. You have to remove the checkmarks or else Oracle will include the Ask.com search bar and change your default search engine to Ask.com.
It was bad enough when the annoyware came from 3rd parties but now you have to be just as careful about watching for extra downloads from the original software sources.
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
* Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
...this is their Raison d'être - "advertisments - malware for the brain."
Requiem for the American Dream
"...reminder that Java has become an Internet security menace."
Actually, the largest menace is Javascript. That's why so many people use NoScript.
Any kind of in-browser active code execution will inevitably have security challenges.
I know I'm replying to APK, but... I use both because they serve different purposes. I want to block ads, so I do that at the hosts file level. I also want to stop tracking while still being able to use services that attempt to track me across the web (e.g. Google and Facebook). There's a few ways I do this (partially, I just use a clean browser for a lot of my browsing), but part of it is using RequestPolicy to prevent non-Google sites from accessing Google domains or non-Facebook sites from accessing Facebook domains. (Ghostery sorta does this automatically.)
I first heard about applets ~95ish and thought: WTF?
CS student says "no problem, they run in the sandbox and stay in your browser unless they're signed as being secure".
Me: "We'll see".
Almost 20 years later, applets still aren't secure.
And CS guy works in infosec.
"I want to stop tracking still being able to use services that attempt to track me across the web (e.g. Google and Facebook)...using RequestPolicy to prevent non-Google sites from accessing Google domains or non-Facebook sites from accessing Facebook domains" - by Anonymous Coward on Sunday January 05, 2014 @07:42PM (#45874475)
Hosts stop sites accessing google/facebook domains/subdomains + trackers (I do & I ACCESS e,g, gmail all day long) - re-proving HOSTS' superiority (equality there + superiority on NUMEROUS levels by gains in speed, security, reliability & even anonymity) OVER RequestPolicy (limited vs. hosts' nigh ubiquitous versatility).
Good to see you use hosts (hosts' superior value vs. redundant browser addons on many levels = undeniable)!
---
"Ghostery sorta does this automatically" - by Anonymous Coward on Sunday January 05, 2014 @07:42PM (#45874475)
Ghostery = ADVERTISER OWNED & technically inferior. I suppose if you were a farmer you'd have a fox guard a henhouse right? Looks it!
---
"I know I'm replying to APK, but" - by Anonymous Coward on Sunday January 05, 2014 @07:42PM (#45874475)
Per subject: What's that mean? You *trying* to put me down?? IF so You're doing a bad job when I address that from a PURELY valid tech level using your "points" against ya above.
(Just as I did in the "A" link in my last post you replied to that compared RequestPolicy to hosts' abilities & lost).
Your tools doing less & worse != "better"!
---
Lastly - When detractors achieve what I have in the art & science of computing (while you were in diapers) they can attempt to "berate me" as peers (& not until) + you lack facts to shoot mine down above + "hiding" behind AC (NerdFest) when you have a reg'd 'luser' acct. here? Please...
APK
P.S.=> Read the quote I used from Einstein & understand (hosts = better for less vs. inferior browser addons more weight/complexity IS that) - Thanks for making ME look good & you "not so good"...
... apk
I don't have Java installed. I run linux, but Java is cross-platform, and I don't fall into the "it can't happen here" camp. Besides, I save a few hundred megabytes of disk space by not installing Java.
Flash is another issue altogether. I follow one forum that autoruns Flash movie ads on occasion. If you hovered over the ad, it would enable sound too.Firefox used to lock up for a few minutes. Running with system load = 3 or 4, on a 2-core machine is begging for thrashing/near-lockup.
I now use 2 browsers...
1) one browser has Flash disabled entirely
2) the other one I launch when I see a link to Youtube/whatever. When the video finishes, I close it. The taskbar has a mini-version of "top" running. Sometimes, after turning off the Flash browser, I'll watch the system load fall from 1.3 down to 0.3... satisfying.
I'm not repeating myself
I'm an X window user; I'm an ex-Windows user
And why should I trust the compilers of hosts lists? They could be easily be redirecting some hosts to malware serving properties while giving you a false sense of security.
I've been burned by what passed as reputable internet sources a couple of times. The trust issue simply isn't solved by relying in some random internet organization for your hosts files.
Last year, I actually caught one of those fake anti-virus programs while a real anti virus program was running. I don't know which site had the malware script, but it was a website that displayed advertisements. Or maybe I got the malware from a hidden script at one of those freeware/shareware sites.
Thanks 4 proving my points 2x -> http://tech.slashdot.org/comments.pl?sid=4631643&cid=45872561 & in my post before it you also bogusly downmodded too http://tech.slashdot.org/comments.pl?sid=4631643&cid=45871549
(With NO valid on topic tech critique to back ya vs. either posts' points)
---
Posted to raise this into view again & my last post was for that too (works EVERY time + QUITE obviously "got a rise" out of ya since it's TRUTH per your further weak downmods of my posts 2x w/ NO "computing-technical" validity disproving my points & backing your downmods).
* :)
Verifiable concrete undeniable Truth's like that - an irresistable force on offense (BEST defense) & an immovable object on defense.
Great stuff. Especially vs. bogusly downmodding effete trolls 'reactions' w/ no validity to 'em!
(Funniest part? You *seem* to *think* folks're stupid & won't see my posts or your reprehensible b.s. in effete "retaliation" - guess again - & that I believe is WHY you did the bogus unjustified downmod yet again - you KNOW folks see my posts - regardless of your bogus downmods - & you're HELPLESS in validly combatting my points favoring hosts via valid ontopic tech grounds)
---
Imo You MUST be an "advertiser"!
(I state that since ya certainly + clearly lack technical saavy to disprove my points in favor of custom hosts files versatility & ubiquity on numerous levels (vs. inferior competitors, obviously, because of that) giving users of HOSTS added speed, security, reliability, & even anonymity)
IF you're a "computing pro", give up. You need more training hands on if you're reduced to such reprehensible tactics - seriously.
Either way - Keep "reacting", dancing to MY tune - you make ME look good, & yourself, "not so good"...
APK
P.S.=> Now, ya just KNOW that I've just GOTTA say it, don't ya? Here 'tis:
THIS? This IS just "too, Too, TOO EASY - just '2ez'" & best part is you're MAKING it so for me - thanks!
... apk
Can you think of any advantages to in-browser ad blockers?
A/V doesn't protect against a lot of this stuff. Malwarebytes has a new anti-exploit beta for us Windows folks.
From the FAQ:
17- What techniques does MBAE use to detect and block exploits?
MBAE incorporates multiple exploit detection and blocking techniques at different stages of the typical exploit attack to provide a truly complete solution against all types of current and future exploits.
Stage 1 Layer: This layer of MBAE incorporates multiple techniques to detect and block exploits during stage 1 of the exploit attack, before the shellcode is allowed to run. In some cases, MBAE detects and prevents exploits before the operating system Data Execution Protection (DEP) protection.
Stage 2 Layer: This layer of MBAE incorporates multiple memory protection and payload execution techniques which prevent exploits from executing their stage 2 payload, thereby protecting the computer even if operating system protections and stage 1 protection techniques have been bypassed.
Most people running something other than IE with an ad block or script block most likely never would have had any problems. My boss still likes IE for whatever reason, needless to say Im at his computer every month or 2 removing spyware, viruses or a total computer hijacking (pay us 100$ to unlock this pc). Last virus he picked up was from an ad on msn.
My program protects vs. it: You SEE data YOU control "redirect" for exclusively thru fav sites creation you do to speed access to favs via local valid resolution & avoiding DNS problems + speed hit & surveillance totally. Yours = only ones allowed to NOT have 0.0.0.0 or 127.0.0.1 in front's why @ top of hosts.
Rest = imported blockers from hosts makers & they're ONLY blockers: Not redirectable faked for malware!
In fact, it blocks known threats via my program's processing algorithm & data outputs thus (or after since hosts itself's optionally AUTO protected by it).
Redirect threat's impossible via my program's algorithms & sources + autoguard of hosts if left resident (Otherwise it applies protective attribs @ least)
Your observation during creation's protection too since you witness it & create topmost favs data ONLY changeable by you - for redirect usefulness to LOCAL resolution speeds & protection vs. DNS redirects/down too.
My program protects vs.that potential threat perfectly, on many levels. More benefits of that layout & process are below.
APK
P.S.=> Favs @ top of hosts = reverse DNS ping verified (in front of you + you created em) speeds their seek/access & you can turn off the faulty w/ big hosts files local DNS clientside cache service in Windows saving CPU cycles, RAM, & I/O wasted on it too - BONUS - & diskcaching hosts (it's a file) = rest for performance.
(Equals/Exceeds index speed to, iirc, 2-3++ million entries via extrapolating a binary search result)
I do 20 @ top of hosts for speed + protection & reliability but also for easy verification (visually from my program's GUI immediately as verification witness yourself)
REST (2,208,392++ here) = blocked - Who CARES how "fast" I get to or thru those - I never INTEND to get to them in the 1st place - They're blockers (vs. myriad threats for all or most all hardware platforms + OS w/ a BSD derived IP stack (hosts IS tightly integrated into TCP/IP itself)... apk
No game I'm aware of has ever had to install VC++.
Oh, you meant the runtime libraries? In that case, 100% of Linux systems clearly have a similar vulnerability, what with having glibc and all.
Seriously? I am wondering if people remember Microsoft. Look at the amount of malware/spyware caused by IE exploits. Windows, especially.
look back at all the holes inside Microsoft's IE.
Stop blaming others for shortcomings, and clean up your own backyard.
my 2c
1st - I'm NOT in the habit of "helping competition" (1 that's imo @ least, betrayed their users' trust by doing what I just noted in selling out or being a fox in the henhouse owned by those that track users etc.).
I used to suggest adblock though - not anymore (proof below in the link)...
However: to answer your question, see subject. Not really, other than for "defense-in-depth"/"layered-security" which I do 'espouse' in a security guide for Windows I wrote up 1997-2008-> http://www.bing.com/search?q=%22HOW+TO+SECURE+Windows+2000%2FXP%22&qs=n&form=QBLH&pq=%22how+to+secure+windows+2000%2Fxp%22&sc=1-31&sp=-1&sk=&cvid=076184f3eb324595b50361c6f7a08236
* HOWEVER: That's before AdBlock was crippled by default & 'souled-out', & Ghostery being advertiser owned etc. as noted in the post of mine you replied to....
APK
P.S.=> Still - the fact remains I stand by my words & challenge ANYONE to disprove them in my post you replied to (that was bogusly downmodded by trolls who obviously, based on the results here, cannot disprove my points on hosts' value in giving users of them added speed, security, reliability, & even anonymity + their superiority on MANY GROUNDS there vs. AdBlock/Ghostery/Request Policy etc. - et al noted there)...
... apk
With all due respect, his post was a lot more insightful than yours. You don't appear to know what you're talking about.
First of all, "deployed the same way" as in "deployed using an HTML <object> or <applet> element that instructs the browser to download and execute the code". The Microsoft Visual C++ redistributable runtime does not include any such mechanism for deploying C++ code. For that matter, not all Java runtime installations do either.
Second, just what do you think ActiveX is programmed in? Hint: it's not its own language. It's a packaging system for COM classes, which are almost without exclusion written in C++, and it *is* possible to deploy and run it in the browser in much the same way as Java applets (object tags). Unlike Java, they run with basically no sandbox but instead require considerable amounts of confirmation before they download. The idea is that they are powerful but unsafe, so only use the ones that you trust. Unfortunately, a number of pre-installed ActiveX controls on Windows have security vulnerabilities in them, so an attacker who finds a way to exploit one of those pre-installed ones doesn't need to get the user to download anything. Hence the way that modern versions of IE require the user to confirm before running an ActiveX control that they've not previously indicated that they trust (and also give you an ability to disable ActiveX completely or only enable it on a site-by-site basis).
I don't care for the Java installer any more than you do, but the security issues with Java applets have literally nothing to do with the language. The only way you could say Java itself is at fault is if you were to argue that Java shouldn't have any OS bindings at all (that is, no ability to access the file system, no ability to create processes, no ability to open network sockets, etc.). This is essentially the situation with JavaScript, of course; while the Java applet sandbox tries to *restrict* the use of functionality like I just mentioned, the JavaScript runtime (as found in browsers) simply lacks APIs to access such risky features. Even there, though, that's not a characteristic of the JavaScript *language* but merely of the sandboxed runtime used to execute JS in the browser. Other uses of JS, ranging from Windows Script Host to Node.JS, are perfectly capable of doing such things.
There's no place I could be, since I've found Serenity...
Yahoo, with the new e-mail format, is malware in itself!
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
* Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
However - regarding your "weapon-of-choice" vs. mine? Well - you know -> http://tech.slashdot.org/comments.pl?sid=4631643&cid=45882675
* Are we "switching gears" from DNS now on your end? I think not, but you're more pointing out adblock for your customers ONLY from what you wrote.
(However - it's "Almost All Ads Blocked now" by default & just can't hold a candle to my fav's 12-20 abilties & features it has, that AdBlock doesn't, & in added security, speed, reliability, + even anonymity (to an extent vs. DNS logs etc.) - & it's why I use it: Nigh Ubiquitous versatility vs. Intentionally crippled & 'souled-out' so-called functionality after being paid off to do so by Google)
Lastly - you're making your "weapon-of-choice" sound like a 'magical woobie' (what you called mine iirc, in fact)... & per that "heated discussion" of ours from your own words? There ISN'T one...
Well ok, fine: Agaiin though - yours doesn't DO nearly as much in terms of added speed, security, reliability, & even anonymity... not by a LONG shot. I.E. (in the end)? There IS a "better woobie" (lol, my fav) & on MANY levels.
APK
P.S.=> Still liked what you said though - I've literally SEEN the exact SAME but I apply a different tool with a LOT more good capabilities & can point you to 1 guy that LITERALLY got 200++ "viruses" a month, month in & month out, year-by-year if you like & he'll tell you (by email, mail me, you have my email address & conversations we've had too there for reply easily - I can have HIM email that testimony your way, however based on YOUR findings now? I don't *think* I even need to)
E.G. - He's seen the SAME results you have & hasn't gotten THAT since he applied my "weapon-of-choice" (custom hosts) for YEARS as long as he uses it & keeps it current - so, what you've discovered? I've literally SEEN for years now & can prove it, IF you wish via that email... apk
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
* Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
Hosts do more w/ less (1 file) @ a faster level (ring 0) vs redundant browser addons (slowing up slower ring 3 browsers) via filtering 4 the IP stack (coded in C, loads w/ OS, & 1st net resolver queried w\ 45++ yrs.of optimization):
---
APK Hosts File Engine 9.0++ 32/64-bit:
http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
(Details of hosts' benefits enumerated in link)
Summary:
---
A. ) Hosts do more than AdBlock ("souled-out" 2 Google/Crippled by default) + Ghostery (Advertiser owned) - "Fox guards henhouse", or Request Policy -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44701775
B. ) Hosts add reliability vs. downed or redirected DNS + secure vs. known malicious domains too -> http://tech.slashdot.org/comments.pl?sid=3985079&cid=44310431 w/ less added "moving parts" complexity + room 4 breakdown,
C. ) Hosts files yield more speed (blocks ads & hardcodes fav sites - faster than remote DNS), security (vs. malicious domains serving mal-content + block spam/phish), reliability (vs. downed or Kaminsky redirect vulnerable DNS, 99% = unpatched vs. it & worst @ ISP level + weak vs FastFlux + DynDNS botnets), & anonymity (vs. dns request logs + DNSBL's).
---
* Addons are more complex + slowup browsers in message passing (use a few concurrently - you'll see) - Addons slowdown SLOWER usermode browsers layering on MORE: I work w/ what you have in kernelmode, via hosts ( A tightly integrated PART of the IP stack itself )
APK
P.S.=> * "A fool makes things bigger + more complex: It takes a touch of genius & a lot of courage to move in the opposite direction." - Einstein
** "Less is more" = GOOD engineering!
*** "The premise is, quite simple: Take something designed by nature & reprogram it to make it work FOR the body, rather than against it..." - Dr. Alice Krippen "I AM LEGEND"
...apk
"Where in hell is APK when you need him?" - by fast turtle (1118037) on Sunday January 05, 2014 @10:19PM (#45875419)
Quoting the Mysterious Mr. Gary 7 from StarTrek TOS "Assignment Earth" episode in my subject-line above!
Lazy fucking bum." - by fast turtle (1118037) on Sunday January 05, 2014 @10:19PM (#45875419)
So - Here I am -> http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
* Since you asked... & THAT ought to show that I haven't been a 'lazy bum' regarding the subject you brought up!
(I *truly* think you'll LOVE that one, by "yours truly", & it's there available in BOTH 32-bit + 64-bit versions - For custom hosts file creation...)
APK
P.S.=> Enjoy - especially since you felt hosts aren't perfect "by a long shot", albeit with GOOD points from you by example too... However, THAT will make them as perfect as is possible via data for hosts files from a dozen reliable & reputable sources in the security community... apk
Quit projecting your OWN issues (being a moron): See subject, you project THAT too, lol...
* :)
(I mean, what - do you "stalk" ALL of my posts? What's the matter - not enough "mod points" to down-moderate them anymore?? Yes - THAT truly appears to be the case: You're ALL "out of ammo"... I love it!)
How pitiful can you BE, posting DAYS AFTER this post was put up, only to have me smack you down yet again?
APK
P.S.=> Get this thru your head: The trolling "likes of you" can't stop me (fact) & yes - It's very apparent you're 1 of 3 types of people:
1.) Malware maker or botnet master
2.) Advertiser
3.) Maker of an INFERIOR competitor to my app
Take your pick & either way? You FAIL (you know it, I know it, & so does anybody else with 1/2 a brain - just based on your illogical off-topic effete "retaliation/reaction")... your fav. color MUST be "transparent", since I see RIGHT thru you, with ease...
... apk
You wouldn't have that problem (or being an offtopic troll either)
* :)
(What I find VERY NICE is the fact you had to go "off topic" & be a troll...)
APK
P.S.=> Why? It proves that you don't have anything that can disprove what I write up in favor of custom hosts files vs. "the competition" (limited & inferior) that favors hosts in abilities in added speed, security, reliability, & even anonymity to an extent, that those competitors just can't even SCRATCH... I love it!
... apk
HTTP Switchboard. This puts to rest all the false claims out there that Chrome doesn't have the proper API to block scripts. This thing does what NoScript, Request Policy and AdBlock do all together, plus it has nice privacy enhancing options.
"With ABP and Privdog I don't have to worry about "will they update the thing" as it is done automatically with the latest version every time they launch the browser." - by hairyfeet (841228) on Thursday January 09, 2014 @06:17AM (#45905359)
Updating hosts = easy w/ my app (has timed scheduler) -> http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74
---
"I've found a way to go one better than HOSTS" - by hairyfeet (841228) on Thursday January 09, 2014 @06:17AM (#45905359)
AdBlock doesn't block ALL ads by default anymore & AdBlock can't do @ least 12 things hosts can -> http://yro.slashdot.org/comments.pl?sid=4127345&cid=44684319 for better speed, security, reliability vs. DNS issues, & even anonymity.
---
* Plus, users get all the things for added speed, security, reliability vs. DNS faults, & even anonymity hosts provide, that browser addons don't do (without slowing up the browser itself in usermode/ring 3/rpl 3 since hosts run as a filter for the IP stack in kernelmode/ring 0/rpl 0 - faster).
ONLY good I have to say about addons is they promote "layered-security"/"defense-in-depth" in combo w\ hosts - but not anymore (almost all ads blocked by default).
E.G.-> I used to suggest AdBlock in security guides I authored 1997-2008 for Windows users -> http://www.bing.com/search?q=%22HOW+TO+SECURE+Windows+2000%2FXP%22&qs=n&form=QBLH&pq=%22how+to+secure+windows+2000%2Fxp%22&sc=1-31&sp=-1&sk=&cvid=076184f3eb324595b50361c6f7a08236
APK
P.S.=> To each his own: NEVER THOUGHT you'd 'drop' your own DNS (but dns is loaded with issues, & yes, ones hosts DO shore up & overcome) & you're doing what I do (OpenDNS here) + they do eat CPU, RAM, & other forms of I/O that other solutions, don't (hosts)... apk