What are the ways to protect the Hosts file while running in admin account?
Also is there a host file blocklist/ adblocker that can be updated automatically?

Thanks

Hostsman (freeware)
http://hostsman.abelhadigital.com/

Features:

- online update and auto-update of hosts file;
- enable/disable usage of hosts file;
- open Hosts file with one click;
- merge two hosts files;
- built-in hosts editor;
- scan hosts for errors, duplicates and possible hijacks;
- find how many host names;
- easily install newly downloaded hosts file;
- create encrypted backups of your hosts file;
- resolve host names;
- keep log of latest blocked sites;
- exclusion list;
- etc.

I don't know what is included in the "etc." :)

Thanks, are u using it?

Yes, because it PROTECTS me against visiting 'dangerous' websites and getting infected this way. It PREVENTS troubles, which is the best protection.
Good support too.

{QUOTE-> Yes, because it PROTECTS me against visiting 'dangerous' websites and getting infected this way. It PREVENTS troubles, which is the best protection.
Good support too. <-QUOTE}

Do you mean: I click on a porn site, but lucky me Hosts file protected me?
I guess not.

Gerard

{QUOTE-> Yes, because it PROTECTS me against visiting 'dangerous' websites and getting infected this way. It PREVENTS troubles, which is the best protection.
Good support too. <-QUOTE}
Does it prevents adds too? Thanks

{QUOTE-> Do you mean: I click on a porn site, but lucky me Hosts file protected me?
I guess not.

Gerard <-QUOTE}
This software is based on blacklists and all blacklists have one thing in common : they are all INCOMPLETE.
In other words, if the website isn't mentioned in the blacklist you will be able to visit it.
IE-SPYAD is a similar software, but it works only for MSIE and is also based on a blacklist and also incomplete.

{QUOTE-> Does it prevents adds too? Thanks <-QUOTE}
At this moment Hostsman has three blacklists :

1. hpHosts
2. MVPS Hosts
3. Mike's Ad Blocking Hosts.

You don't have to use all three, you can select the ones, you want.

So which one is best? I think MVPS?
Is there any disadvantage of using two or all three by merging them?

Hi,

Yes MVPs host file is very good! Hostman protection is that it makes the Host file 'read only'. Spysweeper, WinPatrol, ZoneAlarm, Micorsoft Anti-Spyware (what do they call it these days) & others I'm not aware of offer, an extra degree of protection, & notify the user if some nasty tries to alter the file. Spyblaster will make a copy of the file.

Most likely combining lists will add many duplicate entries. You should consider adding 'SiteAdvisor', avoiding the red x, sites from searches will also help avoid the bad places, which is pretty much what hosts does.

Take Care
Rico

MVPs Host file is the best.

hpHosts is too aggresive blocking legitimate sites.

Not many updates on host files so I use HostXpert to update manually every month.

HostXpert: http://www.funkytoad.com/content/view/13/31/

MVPS is also the best IMO.
Because internet is changing all the time, bad websites disappear or are added world-wide.
So it will never be complete, which is common for all blacklists.

I don't like blacklists, because they are based on what the bad guys do, which is the most incomplete, unreliable and unpredictable source to create an anti-dote. You don't run AFTER the bad guys and pick up their droppings, you run FASTER.

Hostsman and IE-SPYAD are quiet tools and they PREVENT installation of malware and that is always better than removing malware, because you have to find it first.

Just wondering if you are using the beta version? Seems on their site they only offer the beta version and Snapfiles or Tucows offer 2.1.
I am usually a bit wary of beta versions.:wacko:

{QUOTE-> Just wondering if you are using the beta version? Seems on their site they only offer the beta version and Snapfiles or Tucows offer 2.1.
I am usually a bit wary of beta versions.:wacko: <-QUOTE}
You are very right about beta versions, they can't be trusted.
I'm surprised that they offer only the beta version on the home page and not the previous version, not really smart IMHO.
Or you wait until it's out of beta or your download Hostsman v2.1. :)
I'm still using Hostsman v2.1

{QUOTE-> Just wondering if you are using the beta version? Seems on their site they only offer the beta version and Snapfiles or Tucows offer 2.1.
I am usually a bit wary of beta versions.:wacko: <-QUOTE}


Usually I hate using beta version too.:( But I have been using HostsMan beta since 10 days without a glitch so far.:)

Thanks for the input. I have few more Qs.

1- Any slow down in surfing speed by using these Hosts file( I am on dial up so I am really concerned).
2- Any anticipated conflicts especially with other security software/ bowsers etc?
3- Any loss of functionality on my system that I should anticipate?
4- If I tried to go to a site that was blocked by Hosts file. How I can know that site is blocked by Hosts file on my system and not y any other thing?
4- Does MVP Hosts blocks ads as well?

Thanks for any help.

Hi Agile,

1. No
2. None
3. No
4. It would say '127.0.0.1' when you try to go to a site in the Hosts list. You
would be prevented from getting to the black listed site.
4. Only the ads of the site you cannot go to.

Also for more information see: http://mvps.org/winhelp2002/hostsfaq.htm

Take Care
Rico

Thanks Rico.
Is it a good idea to merge MVPS and Mike,s Hosts?
Or only one is good.

Hi Agile,

I would not bother merging the two, many duplicate entries would exist.

Protect the file minimum 'Hostman'
If you have Spyblaster have it make a copy of hosts file
See if any other apps will protect/notify (like ZA, SS, WP, MSAS etc.)

Also very valuable 'siteadvisor' you will know what sites not to visit, when you do a search.

Also previously mentioned very worthwhile (if you use IE) is IE-SpyAD.

If you use IE then IE-Spyad+Spyblaster+MVPs Host your very well covered, as far as black lists go.

I like to call this passive defense, no user decisions, or memory used to keep you safe. Well at least keep you away from the known nasty places.

Take Care
Rico

Aigle,
You may find that a hosts file can speed up your connection at times. If the hosts file you choose includes the common banner ad servers, they won't be displayed on sites they're found on. By not wasting your bandwidth loading ads, the content you want to see loads faster. On dialup, the difference can be quite noticeable.

Regarding how you can tell, the exact message you see will depend on what browser you use. Here's 2 links to screenshots of yahoo mail, one with and one without using a hosts file.
No hosts file. (http://i138.photobucket.com/albums/q277/herbalist-rick/wo-hosts.gif)
With MVPS hosts file. (http://i138.photobucket.com/albums/q277/herbalist-rick/w-hosts.gif)
When an ad or page it blocked, it's not always obvious what it's being blocked by if the blocking mechanism doesn't add a specific message identifying itself.
For editing and maintaining a hosts file, I like Hosts Toggle. (http://www.accs-net.com/hosts/HostsToggle/) It makes it easy to switch between different hosts files, import new ones, back up existing ones, and manually edit them.
Rick

About the only functionality loss you may see is if you try to click the back arrow to view a previous page from the one you are currently viewing in your browser. You'll not be able to if there are any ads on the page you are going back to. One thing that partially cures this is by going back from the drop-down menu that shows your page history. That's what happens in IE7 anyway. It is very frustrating until you get the hang of it and realize what's going on. But even then it is still frustrating at times.

Hello,

I think the use of hosts file is the totally wrong approach to everything:

Blacklisting instead of whitelisting.
Crippling access to potentially needed / desired websites.
False sense of security - either toward filtered or left out websites.
Possible problems with DNS / scanners.
Ability to locate problems within the hosts file when it contains a million entries.
Outdated considering there are billions of websites.

Mrk

Hi,

Mrk - Then IeSpyAd, Spyblaster are also the wrong approach? Perhaps it is wrong, if its your one & only defense, or relied on too heavily. Host files & block lists, in general serve a valid purpose, as part of a 'multi-layered' defense.

{QUOTE-> Crippling access to potentially needed / desired websites. <-QUOTE}
I just don't think myself or most user need something from sites, from a great list like MVPS. I'm sure anything on MVPS list can be obtained from a legitimate site.

{QUOTE-> Possible problems with DNS / scanners. <-QUOTE} I've been using Hosts files for years & never encountered these problems. Note I'm not that lucky if a host file were to do this, trust me I'd be the first to have the problem. This problem is one that I've not seen in this or other forums.

{QUOTE-> Ability to locate problems within the hosts file when it contains a million entries. <-QUOTE} I'll assume you mean something included in the list, that you don't want in the list? Hostman & other host editors, have search functions.

{QUOTE-> Outdated considering there are billions of websites. <-QUOTE}Sadly this is true. But there are more good sites than bad. Also MVPs host file is updated on a regular basis. If you add 'SiteAdvisor' you can eliminate many more bad places.

So for the price of a host file, plus factoring it into a multi-layered defense, it can' hurt.




acr1965 - I remember that 'back button' thing with BlueTacky host file. I've never encountered it using MVPs host file using IE6 or 7.

Take Care
Rico

Thanks Rico and herbalist( esp for snapshots).

@src
Now this loss of backward function is not good I think.

{QUOTE-> Hello,

I think the use of hosts file is the totally wrong approach to everything:

Blacklisting instead of whitelisting.
Crippling access to potentially needed / desired websites.
False sense of security - either toward filtered or left out websites.
Possible problems with DNS / scanners.
Ability to locate problems within the hosts file when it contains a million entries.
Outdated considering there are billions of websites.

Mrk <-QUOTE}
Hi Mrk!
Can u explain your fourth point( DNS/ Scanners)?
Also what u think of using Hosts file for ad-blocking rather than security?

Problems with viewing the previous page via the back click button:

FAQ for MVPS hosts, see question #4 in link below. I never added the sites to the restricted zone in IE7. That seems the thing to do.



http://www.mvps.org/winhelp2002/hostsfaq.htm#Button

Hi,

acr1965 - I do not experience, th back button blues you've referenced.

Rico

{QUOTE-> Hi,

acr1965 - I do not experience, th back button blues you've referenced.

Rico <-QUOTE}

Did you possibly have those sites in your restricted list?

And aigle, maybe you should just give it a try and see how it works. Maybe the back issue will not be there for you either. MVPS hosts certainly gets rid of ads. I am using SuperAdBlocker right now and it seems to be a nice program, especially with the added bonus of SuperAntiSpyware realtime shield. I'll probably trial Ad Muncher after my 30 days are up and then choose between the two. But I can see where it would be good to kill two birds with one stone with SAB.

Hello,

It is 'recommended' to turn off dns caching if you use large hosts files - which then results in much greater bandwidth usage, because you will forward every query for IP translation to your ISP rather than use the local list.

Ad-blocking? You should do it at browser level. Example, Adblock.

Mrk

Hi,

Agile - from MVPS:

{QUOTE-> Editors Note: in most cases a large HOSTS file (over 135 kb) tends to slow down the machine. This only occurs in W2000/XP/Vista. Windows 98 and ME are not affected.

To resolve this issue (manually) open the "Services Editor"

Start | Run (type) "services.msc" (no quotes)
Scroll down to "DNS Client", Right-click and select: Properties
Click the drop-down arrow for "Startup type"
Select: Manual, or Disabled (recommended) click Apply/Ok and restart. [more info] <-QUOTE}

see: http://mvps.org/winhelp2002/hosts.htm#Note

This is why I do not experience the back button thing, It's been awhile since I placed "DNS Client" to manual, I had forgotten.

Mrk - If your saying turning off DNS Client, will slow your surfing speed down, perhaps technically it does, but i cannot precieve the difference btwn. on/off. You could also switch to a faster DNS server (than your ISP) something like 'OpenDNS.'

Take Care
Rico

PS - Agile give MVPS a try, if you dont like it just delete it. Note windows has a Host file, it's normally empty though.

Hello,
The perceived slowdown on your side is minimal. The servers are the ones that will suffer from extra - unneeded - queries. All because you block sites that are simply ... unimportant. Who goes to pokerads.com or such? And if so, ads can be blocked on a higher level, through browser, without any side effects...
Mrk