Hosts file: nothing allowed but microsoft.com



dsmcd
07-09-2005, 11:36 PM
Hello...

I'd like to edit the hosts file so that the only domain allowed
is microsoft.

Any suggestions?

Thx,
D.

David H. Lipman
07-09-2005, 11:36 PM
From: "dsmcd" <dsmcd@stopspamdormouse.net>

| Hello...
|
| I'd like to edit the hosts file so that the only domain allowed
| is microsoft.
|
| Any suggestions?
|
| Thx,
| D.

NO !

Leave the file alone.
There is NO need for a 'hosts' file and mistakes made will block access to legitimate sites.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

bumtracks
07-09-2005, 11:36 PM
hosts file single line can disallow any single url.friendly.name & won't do
wildcards "*"

Perhaps you want to look at your firewall scope settings for Internet
Explorer & other programs that access the Internet.

"dsmcd" <dsmcd@stopspamdormouse.net> wrote in message
news:TTlje.3$e02.406@news.uswest.net...
> Hello...
>
> I'd like to edit the hosts file so that the only domain allowed
> is microsoft.
>
> Any suggestions?
>
> Thx,
> D.
>

dsmcd
07-09-2005, 11:36 PM
"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote:
>From: "dsmcd" <dsmcd@stopspamdormouse.net>
>
>| Hello...
>|
>| I'd like to edit the hosts file so that the only domain
>allowed
>| is microsoft.
>|
>| Any suggestions?
>|
>| Thx,
>| D.
>
>NO !
>
>Leave the file alone.
>There is NO need for a 'hosts' file and mistakes made will
>block access to legitimate sites.
>
>--

I want to block access to ligitimate sites. This is a customer
listening station kiosk which needs to access microsoft (for WMP
album art), but I need to prevent customers accessing any other
domain.

Any other suggestions?
D.

dsmcd
07-09-2005, 11:36 PM
"bumtracks" <visiting@corner.bar> wrote:
>hosts file single line can disallow any single
>url.friendly.name & won't do
>wildcards "*"

Bother.

>Perhaps you want to look at your firewall scope settings for
>Internet
>Explorer & other programs that access the Internet.

OK. I'll experiment. Thanks.

Bob I
07-09-2005, 11:36 PM
Oh MY! That's going to be a LOT of entries!

dsmcd wrote:

> Hello...
>
> I'd like to edit the hosts file so that the only domain allowed
> is microsoft.
>
> Any suggestions?
>
> Thx,
> D.
>

David H. Lipman
07-09-2005, 11:36 PM
From: "dsmcd" <dsmcd@stopspamdormouse.net>


|
| I want to block access to ligitimate sites. This is a customer
| listening station kiosk which needs to access microsoft (for WMP
| album art), but I need to prevent customers accessing any other
| domain.
|
| Any other suggestions?
| D.

You can't do becuse it it illogical. The 'hosts' file is a TCP/IP-NFS construct and is
meant to assign a IP address to an alias. It is NOT designed to block sites. There are
those who have created a 'hosts' file to block malicious sites by assigning the the local IP
diagnostic resonder address (127.0.0.1) to the alis of a malicious site. However, it is a
silly idea as there are thousands upon thousands of site an the alias can be changed at any
time.

What you need is a hardware based FireWall product in between the Kiosk and the Internet.
Then you can create a FireWall rule(s) allowing specific sites, ranges of addresses , etc,
and explicitly exclude all others.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

HeyBub
07-09-2005, 11:36 PM
David H. Lipman wrote:
> From: "dsmcd" <dsmcd@stopspamdormouse.net>
>
>> Hello...
>>
>> I'd like to edit the hosts file so that the only domain allowed
>> is microsoft.
>>
>> Any suggestions?
>>
>> Thx,
>> D.
>
> NO !
>
> Leave the file alone.
> There is NO need for a 'hosts' file and mistakes made will block
> access to legitimate sites.

"Legitimate?" As in spyware, adware? Bah!

Check
http://www.mvps.org/winhelp2002/hosts.htm

dsmcd
07-09-2005, 11:36 PM
"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote:
>From: "dsmcd" <dsmcd@stopspamdormouse.net>
>
>
>|
>| I want to block access to ligitimate sites. This is a customer
>| listening station kiosk which needs to access microsoft (for
>WMP
>| album art), but I need to prevent customers accessing any
>other
>| domain.
>|
>| Any other suggestions?
>| D.
>
>You can't do becuse it it illogical. The 'hosts' file is a
>TCP/IP-NFS construct and is
>meant to assign a IP address to an alias. It is NOT designed
>to block sites. There are
>those who have created a 'hosts' file to block malicious sites
>by assigning the the local IP
>diagnostic resonder address (127.0.0.1) to the alis of a
>malicious site. However, it is a
>silly idea as there are thousands upon thousands of site an the
>alias can be changed at any
>time.

Gotcha. Was hoping for a fast easy fix.
>
>What you need is a hardware based FireWall product in between
>the Kiosk and the Internet.
>Then you can create a FireWall rule(s) allowing specific sites,
>ranges of addresses , etc,
>and explicitly exclude all others.

Sounds reasonable. I'll look into it.

Thx,
D.

Bobby28
07-09-2005, 11:36 PM
What about content advisor? Only allow microsoft sites.

"Bob I" wrote:

> Oh MY! That's going to be a LOT of entries!
>
> dsmcd wrote:
>
> > Hello...
> >
> > I'd like to edit the hosts file so that the only domain allowed
> > is microsoft.
> >
> > Any suggestions?
> >
> > Thx,
> > D.
> >
>
>

David H. Lipman
07-09-2005, 11:36 PM
From: "HeyBub" <heybub@gmail.com>


|
| "Legitimate?" As in spyware, adware? Bah!
|
| Check
| http://www.mvps.org/winhelp2002/hosts.htm
|

I don't agree with the philosophy of using a a 'hosts' file to block sites in contrast to
the MVPs.

It is illogical to try to cover thousands upon thousands of malicious web sites. Thwere is
no way to keep up with it and it is not what the 'hots' file was designed for.

The most important tool is the person at the keyboard and practicing Safe Hex. You don't
block malicious sites you learn not to visit the sites in the first place.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

BBUNNY
07-09-2005, 11:37 PM
"dsmcd" <dsmcd@stopspamdormouse.net> wrote in message
news:fDmje.9$e02.668@news.uswest.net...
| "David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote:
| >From: "dsmcd" <dsmcd@stopspamdormouse.net>
| >|
| >| I want to block access to ligitimate sites. This is a customer
| >| listening station kiosk which needs to access microsoft (for
| >WMP
| >| album art), but I need to prevent customers accessing any
| >other
| >| domain.
| >|
| >| Any other suggestions?
| >| D.
| >
| >You can't do becuse it it illogical. The 'hosts' file is a
| >TCP/IP-NFS construct and is
| >meant to assign a IP address to an alias. It is NOT designed
| >to block sites. There are
| >those who have created a 'hosts' file to block malicious sites
| >by assigning the the local IP
| >diagnostic resonder address (127.0.0.1) to the alis of a
| >malicious site. However, it is a
| >silly idea as there are thousands upon thousands of site an the
| >alias can be changed at any
| >time.
|
| Gotcha. Was hoping for a fast easy fix.
| >
| >What you need is a hardware based FireWall product in between
| >the Kiosk and the Internet.
| >Then you can create a FireWall rule(s) allowing specific sites,
| >ranges of addresses , etc,
| >and explicitly exclude all others.
|
| Sounds reasonable. I'll look into it.

Floppy Fire Wall will do the job for you.
<http://www.zelow.no/floppyfw/>

HeyBub
07-09-2005, 11:37 PM
David H. Lipman wrote:
> From: "HeyBub" <heybub@gmail.com>
>
>
>>
>> "Legitimate?" As in spyware, adware? Bah!
>>
>> Check
>> http://www.mvps.org/winhelp2002/hosts.htm
>>
>
> I don't agree with the philosophy of using a a 'hosts' file to block
> sites in contrast to the MVPs.
>
> It is illogical to try to cover thousands upon thousands of malicious
> web sites. Thwere is no way to keep up with it and it is not what
> the 'hots' file was designed for.
>
> The most important tool is the person at the keyboard and practicing
> Safe Hex. You don't block malicious sites you learn not to visit the
> sites in the first place.

Agreed, but it's almost trivial to block the half-dozen major spyware sites
(doubleclick, etc.)


Hosts file: nothing allowed but microsoft.com