Re: LMHOSTS FILE

From: Googi Singha (googi@mindspring.com)
Date: 07/23/01 

Message-ID: <00e001c11397$431c6b90$f4aa7bcf@ssingha>
From: "Googi Singha" <googi@mindspring.com>
To: "Michael Blauvelt" <mblauvelt@primeinc.com>, <security-basics@securityfocus.com>
Subject: Re: LMHOSTS FILE
Date: Mon, 23 Jul 2001 12:48:12 -0400

I'm generally not a large fan of LMHOSTS -

LMHOSTS is used to resolve IP addresses from NetBios names which in itself
is a vulnerable protocol. It can also cause network congestion in "larger"
or routed networks because the requests poll every machine and start higher
up the TCP/IP stack. LMHOSTS can be hard to maintain if you switch your
servers around a lot too.

Personal recommendation -
 Disable LMHOST and setup a WINS server instead - depending on the size of
your network you can schedule updates by "push" or "pull" methods.

We use only 2 WINS servers for about a 6000 user network - just to give you
some idea of low overhead of this topology. Setup the WINS on the same box
running your local DHCP.
Hope this helps.
googi...

----- Original Message -----
From: "Michael Blauvelt" <mblauvelt@primeinc.com>
To: <security-basics@securityfocus.com>
Sent: Thursday, July 19, 2001 5:38 PM
Subject: LMHOSTS FILE

> Are there any security issues surrounding the LMHOSTS file in WinNT? I am
> trying to decide whether it should be disabled or not.
> Thanks,
>
> Michael Blauvelt
>
>
>
> http://www.primeinc.com
> **********************************************************************
> This email and any files transmitted with it are confidential
> and intended solely for the use of the individual or entity to
> whom they are addressed. If you have received this email
> in error please reply to the sender of the message.
>
> The views expressed in this correspondence may not
> reflect the views of Prime, Inc.
>
> This footnote also confirms that this email message has
> been scanned for the presence of computer viruses.
> ***********************************************************************

Relevant Pages

  • Re: [SLE] Network "Re-Connection" Problem
    ... >>> both) Windows devices after having successfully formed the LAN, ... The lmhosts file is slightly different format to the hosts file. ... However, as an alternative to WINS, it is possible to have full domain browsing by using only LMHOSTS files on all computers, although there are some limitations that will be discussed in this article. ...
    (SuSE)
  • Re: Perils of Gwendolyn (er, 8364 futzing)
    ... Shouldn't DHCP remove the need for a HOSTS or LMHOSTS? ... NetBIOS Resolution Uses DNS: No ... Appendix H - LMHOSTS File, from Windows 2000 Server Resource Kits. ...
    (comp.sys.ibm.ps2.hardware)
  • Re: Perils of Gwendolyn (er, 8364 futzing)
    ... Windows 98 IP Configuration ... "In Windows NT, the HOSTS file is for TCP/IP utilities, and the LMHOSTS ... Appendix H - LMHOSTS File, from Windows 2000 Server Resource Kits. ...
    (comp.sys.ibm.ps2.hardware)
  • Re: The specified network name is nolonger available
    ... LMHOSTS and subnet mask has been checked and rechecked many times. ... > It should be rebuilt every time you reboot the host. ... But check for an LMHOSTS file anyway. ...
    (microsoft.public.win2000.networking)
  • Re: VPN to Windows 2003 - ping not OK server to remote clients but not
    ... and Lmhosts is not something that an averge user can do, ... > separate subnet from the client, you need to add WINS on the VPN client. ... > the small network or peer to peer network, you may want to to create ... >> ping from remote client to the VPN server either by name or by IP. ...
    (microsoft.public.win2000.ras_routing)