Sam Gleske on 18 Jan 2013 08:03:16 -0800
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
Re: [PLUG] "playing nicely with others"
- From: Sam Gleske <email@example.com>
- To: "Philadelphia Linux User's Group Discussion List" <firstname.lastname@example.org>
- Subject: Re: [PLUG] "playing nicely with others"
- Date: Fri, 18 Jan 2013 11:02:49 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=si3clhaTduJGg7ELSVgqFmGQzs+ds5YUIR2Ozt+7CSY=; b=EPKQqX5UPOOyrZImhzWpzCOSdmOVXIwHTO/OxQowD/5gIJag0E8ftIWqeJmMhL/+2Q W++IrudPoLKQMZelHUxH1RsMCSp04BDSxBMS15lMmMuKhIsW+l5/GevFzT/5faq4qcxm 3FnpclHTMrDzoNNAmC7Zq4qQJsXh7wpWjRRyXBz2/8wMQ/f3lPGkRUHFIqzQFXcqXlFq DKSPHd/v5hLAYhuEUsUKAhTwv83/YP4YNIpZNkZqwIOijNbIp4WE3igKBpLp1lnncDR7 BErHVFZxT8K7Cqd+sr8ilIYR+rrajBJVqSBruIYAIe0TnoDl9Ix/cnPfbbhc47Uc7AtW mAng==
- Reply-to: Philadelphia Linux User's Group Discussion List <email@example.com>
- Sender: firstname.lastname@example.org
Also, a big part of this is how you browse the web and how you block the web.
== Browsing the Web ==
I use NoScript with Firefox for browsing. I have most plug-ins disabled save for flash (I don't even usually run Java). This should be a requirement for you on any machine you use to browse the web.
== Blocking the Web ==
You should also consider running your own DNS and filter the web using DNS poisoning. That's what I do at home and works well for protecting all of my devices (Windows, PS3, XBOX, mobile phones over wifi, XYZ web browsing device).
DNS Poisoning using BIND (named).
I'll even give you a copy of a portion of my DNS configuration. This way you can get started more quickly.
named.conf.ads.block + named.conf.log + named.conf.malicious located in /etc/named/
named.conf.ads.block has the majority of the "ad domains" which I block. The list I provided you is blocking 2864 domains.
/var/named/poison is where the DNS poisoning magic happens.
That should be more than enough to get you on your way. To enable/disable ad-blocking using DNS simple comment out the include directives at the bottom of named.conf and restart the named daemon. That's how I do most of my protection at home and it has been very successful. Any time there is a crappy domain I don't want to see any more I just add it to my list of poisoned domains. A real cool side-effect with all of this is that ads and websites inside of flash players are inherently blocked as well without the need to block all flash.
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug