|
|
Microsoft Bypasses HOSTS File - TechAmok
Microsoft Bypasses HOSTS File - [security]
09:35 AM EDT - Apr,17 2006 - post a comment Dave Korn announced on the Full Disclosure and Bugtraq security lists that
Microsoft is bypassing local lookups for some hosts, meaning that you can't
locally block some sites through your HOSTS file. All of these sites are
MicroSoft controlled sites:
DomainScreenList:
windowsupdate.microsoft.com
windowsupdate.com
microsoftupdate.com
download.microsoft.com
update.microsoft.com
HostsScreenList:
microsoft.com
www.microsoft.com
support.microsoft.com
wustats.microsoft.com
microsoftupdate.microsoft.com
office.microsoft.com
msdn.microsoft.com
go.microsoft.com
msn.com
www.msn.com
msdn.com
www.msdn.com
A quick check suggests that this behavior debuted with XP SP2, and is present on
2003 SP1 as well. (I haven't looked at 2003 RTM, but it would be interesting if
someone please would.) Although one could argue that this measure is intended to
thwart attempts to block updating Microsoft products, it's indefensible because:
1) It's a point-in-time, cat-and-mouse defense against an ephemeral malware
technique, a change that causes permanent headaches in situations like yours,
and the potential for negative publicity as a result.
2) As far as I know, their malicious software removal tool didn't exist back
when this behavior was created, so what good was keeping access to Microsoft
open going to do an infected system? What good does it do to install a patch for
a vulnerability that's already been exploited onto the computer of the
archetypal "home user"?
3) Although it falls in line with removing raw sockets and limiting half-open
TCP connections, making these Microsoft hosts and domain unfilterable is even
more egregious because of the implications you mentioned, and because this
behavior was never publicly documented.
4) Their selectiveness seems unfair. I'm sure all the antivirus/antispyware
companies whose domains regularly end up in hosts-files would love to be added
to the list, too. (So would everyone else whose software reports "anonymous
usage statistics" and all the other companies making money from web
advertising.*) Going back to #3, it would have been more disruptive but less
controversial if they had removed regard for the hosts-file entirely, or made
the resolver only consult the hosts-file after all else failed, thereby
preventing it from being used for blocking. It's not a great analogy, but this
move is sort of like if they had only blocked raw IP packets headed for a
Microsoft IP address, instead of raw sockets entirely.
|
|
Short overview of recent news articles |
|
Why can’t you be NORMAL?!? Roasting Staff Setups (Dec,09 2025 ) A Ryzen Cooling MONSTER - be quiet Silent Loop 3 Review (Dec,09 2025 ) The Boys - Official Final Season Trailer (Dec,07 2025 ) Unemployed in your 30's (Dec,06 2025 ) Play Store Customers to Receive Automatic Payments from $700 Million (Dec,05 2025 ) Google's Second Release of Android 16 Brings Smart Notifications (Dec,05 2025 ) Netflix To Buy Warner Bros for $82.7 Billion (Dec,05 2025 ) Micron to Exit Crucial Consumer Business, Ending Retail SSD and DRAM (Dec,03 2025 ) Samsung Galaxy Z TriFold Unboxing! (Dec,02 2025 ) Top 5 Best CPUs of 2025 (Nov,30 2025 ) Google Adding AirDrop to Android (Nov,30 2025 ) 20 TOP ALIEXPRESS products for BLACK FRIDAY (Nov,29 2025 ) Stop Wasting Money on Premium Monitors (Nov,26 2025 ) The Blackest Friday - Tech News Nov 23 (Nov,23 2025 ) T-Roc: Will this new VW be the best car of 2026? (Nov,23 2025 ) Can I build my own Steam Machine? (Nov,23 2025 ) 50 NEXT-LEVEL Gadgets Every Man NEEDS to See (Nov,22 2025 ) RETURN TO SILENT HILL Trailer (2026) (Nov,22 2025 ) I was WRONG about the Porsche 911 GT3 (or was I?) (Nov,20 2025 ) Pi GPT Tool Turns Raspberry Pi into a ChatGPT-Powered Smart Device (Nov,20 2025 ) Rainbow Six Siege X - Official 'Team Rainbow's Last Mission' (Nov,17 2025 ) Stranger Things Seasons 1-4 Recap (Nov,17 2025 ) Kill Bill: The Whole Bloody Affair - Official Trailer (2025) Uma (Nov,16 2025 ) The Devil Wears Prada 2 - Official Teaser Trailer (2026) Meryl (Nov,15 2025 ) Valve’s New Console and Controller - STEAM Machine & STEAM (Nov,15 2025 ) Valve Steam Machine, Desktop SteamOS, Steam Frame VR, & Controller | (Nov,15 2025 ) Battlefield REDSEC - Official Live-Action Trailer (Nov,01 2025 ) What's the Best PC Upgrade (besides CPU/GPU)? (Nov,01 2025 ) Directive 8020 - RTX On Trailer (Oct,31 2025 ) Stranger Things 5 - Official Trailer (Oct,30 2025 ) AMD Releases Software Adrenalin Edition 25.10.2 WHQL Drivers (Oct,29 2025 ) Exploding AMD CPUs | Investigating ASRock's Murderboards (Oct,29 2025 ) Setting Up Our First Huge Gaming Event was CHAOS (Oct,29 2025 ) Malware of the Future: What an infected system looks like in 2025 (Oct,27 2025 ) F1: Race Highlights | 2025 Mexico City Grand Prix (Oct,27 2025 ) F1: Qualifying Highlights | 2025 Mexico City Grand Prix (Oct,26 2025 ) New Big Windows 11 25H2 October Update - New Taskbar Battery Icons (Oct,25 2025 ) Apple Prepping 'Transfer to Android' Feature, Including 3rd-Party (Oct,25 2025 ) HW News - RIP Internet, RAM Prices Skyrocket from AI Demand, Intel (Oct,24 2025 ) Retro Gaming PC Upgrades go WRONG! (Oct,21 2025 ) How social media has ruined us - the more time you spend online, the (Oct,21 2025 ) FERRARI 12 CILINDRI // 340KMH REVIEW on AUTOBAHN (Oct,20 2025 ) ROG Xbox Ally X - a PC Gamer's Perspective (Oct,20 2025 ) Race Highlights | 2025 United States Grand Prix (Oct,20 2025 ) RedMagic Puts Liquid Cooling in its New Gaming Phone (Oct,18 2025 ) Russia Says U.S. Is Planning a $37 Trillion Crypto Reset (Oct,18 2025 ) Tor Browser says no to Firefox's AI features as it removes them (Oct,18 2025 ) NVIDIA GeForce 581.57 WHQL Driver (Oct,14 2025 ) Samsung One UI 8.5 vs iOS 26 - COMPARISON (Oct,13 2025 ) Google Turned Down by Supreme Court, Must Open up App Payments (Oct,12 2025 )
>> News Archive <<
| |
|
