Re: Question4 Sponge,et.al-Hosts File;Proxies

From: dak (comp-security-firewalls_at_spamtrap.cjb.net)
Date: 01/03/05 

Date: Mon, 03 Jan 2005 01:38:16 -0600

On Mon, 3 Jan 2005 07:00:21 +0100 (CET), Nomen Nescio
<nobody@dizum.com> wrote:

> I have not tried DNS Kong. I looked at it once but it sounded like
>too much trouble to use with an older Windows system (from memory?)
>as it required installing ancilliary system files and I did not
>want to do that.

 I run DNSKong and eDexter on Win98SE. It actually wasn't as much
trouble installing and setting it up as it first appeared it was going
to be.

> Supposedly DSKong is compatible with Proxomitron, but the question
>remains will it allow Proxomitron to do its thing and STILL use it's
>own DNS like filtering mechanism FIRST?

 I can't answer that as I don't run Proxomitron with DNSKong and
eDexter, but I do run "BIND-LE 2.0 (beta) for Win9x" for DNS and they
all work happily together. DNSKong allows choices for using PROXY,
CACHE and/or PRESETS.

> Also can u use DSKong to ALLOW certain addresses as u can with a
>Hosts File? I have not used the program, but my guess is not.

 Yes, you can. DNSKong has both PASS and PRESETS filter files along
with the NAMED (blocking) filter file (all filter files are TXT files).
 The PASS allows you to enter FQDNs (Fully Qualified Domain Names) to
circumvent blocked domain names. The PRESETS is similar to the
originally intended use of a HOSTS file.

> Anyone else found a solution wherein u can use the DNS hosts file and
>Proxomitron on the same lookup? My guess here is that it is simply
>better to add any block sites to Proxomitron itself. But this still
>does not allow the advantage of the Hosts File being a local DNS
>which is MUCH quicker for page loads, especially if your cache is
>cleared frequently.

 Again, I can't answer questions about Proxomitron because I don't use
it.
 You can still use a HOSTS file with DNSKong and eDexter, but the only
required HOSTS file entries are "127.0.0.1 localhost" and "127.0.0.1
filtered.by.edexter". Those are the only entries in my HOSTS file, I do
everything in DNSKong and/or eDexter's PAC file; blocking/passing
(FQDNs, IP addresses, wildcard matching on domain names or paths, even
partial names or paths) and presets (local DNS).
 Best I remember (it's been a long time since I set it up or had to
tweak it any at all) the order is:
 -HOSTS file
 -eDexter's PAC file
 -DNSKONG presets
 -DNSKong passes
 -DNSKong blocks
 -DNS servers 

-- 
 dak

Relevant Pages

  • Re: adverts - blocking with firewalls
    ... Proxomitron seems to be a standard among security folks. ... You're best bet at blocking ads, spyware, and web-bugs is DNSKong. ... >problem of advertisements on the internet. ... >their firewall I thought that their software would do this job but you have ...
    (comp.security.firewalls)
  • Re: Pop-up Query
    ... I also recommend DNSKong along with Prox, ... Any browser proxy like Proxomitron, AdSubtract, webwasher, etc. will ... DNSKong does ...
    (comp.security.firewalls)
  • Re: ZONEALARM EVOLVES INTO FULL SECURITY TOOL
    ... Does ZAP 3.0 block by falsifying a DNS resolution, ... And it's not like HOSTS or DNSKong ... > proxies like Proxomitron and WebWasher. ... In that case, go with Outpost. ...
    (comp.security.firewalls)
  • Question4 Sponge,et.al-Hosts File;Proxies
    ... I ran across this old answer from Sponge concerning the use of Hosts File with ... external proxy list. ... Instead it passes all DNS lookups to the ... this feature of the Hosts file WITH Proxomitron and WITH using the external ...
    (comp.security.firewalls)
  • How to block ads using hosts file -and- ISPs web proxy?
    ... I "abuse" my hosts file to use it for blocking ... My ISP allows me to use a web proxy, ... DNSKong is compatible with web proxies or proxy servers. ... The weird thing is that everybody is so fond of this hosts file trick, ...
    (comp.security.firewalls)