In the past I have overlooked adding a hosts file to my security setup, but lately I have been doing a little but of reading about them and it seem like a GREAT way to increase your security, and the best part is that it does not use any system resources, it is almost like spyware blaster, but covers a much bigger scope. So all I need to do is download one and place it in my C:\WINDOWS\SYSTEM32\DRIVERS\ETC folder and I am good to go? Then I just check back at the site periodically and if an updated version is available download it and replace the old one? Are there any negatives to using a host file? I heard they can slow down your computer on XP, but if you disable the DNS Client service this should not be a problem. I already downloaded Hoster, which is a hosts file manger, but I am not sure were to get my hosts file, these two sites seem popular http://www.mvps.org/winhelp2002/hosts.htm and http://www.hosts-file.net/ it either a good site to get it from? Anything else I should know before setting up my hosts file? Thanks.

-{ Quote: " but I am not sure were to get my hosts file, these two sites seem popular http://www.mvps.org/winhelp2002/hosts.htm and http://www.hosts-file.net/ it either a good site to get it from? " }-Hey Matt,
You might want to keep up with the thread that was started this morning concerning Hosts file.

This one---> Hosts File - what do you use and why? (http://www.wilderssecurity.com/showthread.php?t=78071)

BTW....both of those Hosts file URL's you mentioned are very good and recommended often across the Net.

-{ Quote: "So all I need to do is download one and place it in my C:\WINDOWS\SYSTEM32\DRIVERS\ETC folder and I am good to go?" }-Correct, just remove the .TXT extension from the downloaded file.


-{ Quote: "Then I just check back at the site periodically and if an updated version is available download it and replace the old one?" }-Again correct.


-{ Quote: "Are there any negatives to using a host file?" }-Not that I have found to date.


-{ Quote: "I heard they can slow down your computer on XP, but if you disable the DNS Client service this should not be a problem." }-Correct.


-{ Quote: "I already downloaded Hoster, which is a hosts file manger" }-I started with that however I’ve just started using B.I.S.S. Host Manager from www.bluetack.co.uk together with their Hosts file as well, the reasons for this I mention here. (http://www.wilderssecurity.com/showthread.php?t=78071)


-{ Quote: "I am not sure were to get my hosts file…" }-I’m using Bluetacks now, see above link.


-{ Quote: "Anything else I should know before setting up my hosts file?" }-No, seems you have a good handle on it, just make sure you make the hosts file “Read Only”.

Hope this helps…

Cheers ;D

-{ Quote: "and the best part is that it does not use any system resources, it is almost like spyware blaster, but covers a much bigger scope.
" }-

Technically incorrect. Everytime you do a DNS lookup, your computer will have to consult your hosts file, the larger it is, the more time it takes.

On modern machines, this is insignificant however , even if hosts files are inefficient.

-{ Quote: "
Are there any negatives to using a host file? I heard they can slow down your computer on XP, but if you disable the DNS Client service this should not be a problem.
" }-

That is true, but even without this problem, slowdowns can be significant if you have a big host files and a very old computer. Another problem with hosts files is that you will occasionally run into situations where sites are wrongly blocked.

" }-

-{ Quote: "Technically incorrect. Everytime you do a DNS lookup, your computer will have to consult your hosts file, the larger it is, the more time it takes.

On modern machines, this is insignificant however , even if hosts files are inefficient." }-

If I use my host of SpyBlocker, my computer turns out very very slow...I need to do a hard reboot.
If I disable however the dns service and ipsec service then it's ok again.

Inf.

-{ Quote: "If I use my host of SpyBlocker, my computer turns out very very slow...I need to do a hard reboot.
If I disable however the dns service and ipsec service then it's ok again.

Inf." }-

Totally different problem, infinity. I'm referring to the inefficency of hosts file as flat files, the fact that entries have to be fully qualified domain names, no regexp support, without running a server of somekind (eg edexter), times out to 127.0.0.1 might take a while and many other disadvanatages of hosts files compared to other methods of filtering .

-{ Quote: "Totally different problem, infinity. I'm referring to the inefficency of hosts file as flat files, the fact that entries have to be fully qualified domain names, no regexp support, without running a server of somekind (eg edexter), times out to 127.0.0.1 might take a while and many other disadvanatages of hosts files compared to other methods of filtering ." }-
treewalk is an option as a DNS server/cache
simple to configure
light. fast.
www.ntcanuck.com
really decent, but you may run into trouble with certain domains like '.tk'
I've posted it's solution elsewhere [software and services] if you do get treewalk.

@Infinity
Try not to disable IPSEC and see what happens... I have a hosts file expanded by multiple sources to about 36,670 entries, NO lag noticed ;)

-{ Quote: "Try not to disable IPSEC and see what happens... I have a hosts file expanded by multiple sources to about 36,670 entries, NO lag noticed " }-

Allready done that. I disable all services I can at all times. if I want an update for microsoft then I enable first the update service and help service. all the rest is disabled as much as possible...

@ Clueless: yep, I know it's not that efficient and a little old/prehistoric but I still use it eventhough the sites I visit nowadays are less "dangerous" then I used to visit a while back *puppy*

Andy