trinity-users@lists.pearsoncomputing.net

Message: previous - next
Month: August 2020

Re: [trinity-users] hosts file modification - dll

From: "Dr. Nikolaus Klepp" <office@...>
Date: Mon, 31 Aug 2020 09:48:55 +0200
Anno domini 2020 Mon, 31 Aug 09:33:33 +0200
 Stefan Krusche scripsit:
> Hi Bill,
> 
> Am Montag 31 August 2020 schrieb William Morder via trinity-users:
> > I do know that I see a big difference between using a customized
> > hosts file instead of (only) depending on ad-blockers. As soon as I
> > overwrite the hosts file with my list, I find that my system is more
> > stable. It's not only the ads that get blocked, it seems, but also
> > other unwanted connections.
> 
> Sure, that's what I want as well :-)  I'm using a huge /etc/hosts as
> well, but only with 0.0.0.0 so all requests from unwanted domains get
> send to nowhere without my system (localhost) trying to serve them
> before.
> 
> The purpose of using 127.0.0.1 in /etc/hosts, AIUI, is to make the web
> server on localhost show some substitute page/image/whatever to
> indicate something has been blocked.  If you don't have a web server
> running on localhost and configured to serve such requests it doesn't
> make sense to put 127.0.0.1 in /etc/hosts to my understanding.
> 
> HTH
> 
> Kind regards,
> Stefan

I had a blacklist in /etc/hists some time ago, too - autogerated, always fresh from the net. One could argue if that was a good ide. Anyways this is the sniplet from rc.local:

	# HOSTS-Datei mit Adblocker :-)
	(
	sleep 5m
	cat > /etc/hosts << XXX
	# insert your hostname here
	127.0.0.1   localhost t61

	# The following lines are desirable for IPv6 capable hosts
	::1    localhost ip6-localhost ip6-loopback
	ff02::1 ip6-allnodes
	ff02::2 ip6-allrouters
	XXX

	wget http://winhelp2002.mvps.org/hosts.txt -O - 2>/dev/null | grep ^0.0.0.0 >> /etc/hosts
	) &

But some time ago my old firewall died. I replaced it with a RPi1+OpenWRT. There's a package for openwrt that does basicly the same thing (as does pihole - which I was inclied to use earlier ut turned out to be mostly marketing blablabla). I cannot say if these DNS based nirvanas are any good. But together with uMatrix and uBlockOrigin it does a decent good job.

Nik


> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: trinity-users-unsubscribe@...
> For additional commands, e-mail: trinity-users-help@...
> Read list messages on the web archive: http://trinity-users.pearsoncomputing.net/
> Please remember not to top-post: http://trinity.pearsoncomputing.net/mailing_lists/#top-posting
> 
> 



-- 
Please do not email me anything that you are not comfortable also sharing with the NSA, CIA ...

powered by ezmlm-www (v1.4.5)