Solved

Using HOSTS File

Posted on 2009-05-17
4
250 Views
Last Modified: 2012-05-07
Hi There
I have a Windows 2003 domain.  And I want to be able to block bad websites using the hosts file from http://www.mvps.org/winhelp2002/hosts.htm.  Looking at the knowledge base here most people have frowned upon distributing this file to client workstations.  I was wanting to know if there was a way to import the hosts file information into the DNS server.  Or if in this situation it was okay to distribute the Hosts file to end users.  If so what would the best way be if the end users don't have administrative rights to their PC's.

Thanks
0
Comment
Question by:omfgwtflolbbq
  • 2
  • 2
4 Comments
 
LVL 1

Expert Comment

by:cbdudek
Comment Utility
There is no hosts file import to my knowledge.  If you were using something like Microsoft ISA server, then you could import the sites into that if you found a list that was created for it.

What I would recommend is using a free service like opendns.com.  There are a lot of small companies that use opendns to block pornography and other bad sites out there.  Best of all, its free.  It isn't as robust as Websense, but its better than nothing.
0
 

Author Comment

by:omfgwtflolbbq
Comment Utility
Unfortunately we don't have ISA Server.  We are however using pfSense.  Although a quick look there and I couldn't see how to configure using the aforementioned hosts file.  Looking at my DNS Server it does seem that we are using opendns.  I don't know what the previous IT  Manager's login details are so I can't really configure the account and bad sites aren't being filtered.

Maybe copying hosts files to user computers is the way to go?
0
 
LVL 1

Accepted Solution

by:
cbdudek earned 500 total points
Comment Utility
Copying hosts files to the users computers is a very good option.  Especially since you are looking at many many domains to block.  I know there is a way to mass import domains into pfsense that you want to blacklist, however, you have to know XML to do it.  I have never done that, but looking into that as an option is a good option.

As for the opendns login, you can create a new login and set it up from scratch if you would like.  I think the opendns option is a good starter point when it comes to blocking some nasty sites you don't want access too.  As I said before, it isn't the BEST solution, but it does a pretty good job for free.

You can setup a login script to copy the hosts file over to each system.  Here is a good thread on it.

http://www.petri.co.il/forums/showthread.php?t=13939

0
 

Author Closing Comment

by:omfgwtflolbbq
Comment Utility
Hi There
I finally got opendns going.  That and I tried out the host distribution suggestion you made.  Couldn't get group policy startup script going.  But figure OpenDNS is enough.
Thanks
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

As companies replace their old PBX phone systems with Unified IP Communications, many are finding out that legacy applications such as fax do not work well with VoIP. Fortunately, Cloud Faxing provides a cost-effective alternative that works over an…
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now