Re: [PLUG] "playing nicely with others"

Sam Gleske on 18 Jan 2013 08:03:16 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] "playing nicely with others"

From: Sam Gleske <sam.mxracer@gmail.com>
To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>
Subject: Re: [PLUG] "playing nicely with others"
Date: Fri, 18 Jan 2013 11:02:49 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=si3clhaTduJGg7ELSVgqFmGQzs+ds5YUIR2Ozt+7CSY=; b=EPKQqX5UPOOyrZImhzWpzCOSdmOVXIwHTO/OxQowD/5gIJag0E8ftIWqeJmMhL/+2Q W++IrudPoLKQMZelHUxH1RsMCSp04BDSxBMS15lMmMuKhIsW+l5/GevFzT/5faq4qcxm 3FnpclHTMrDzoNNAmC7Zq4qQJsXh7wpWjRRyXBz2/8wMQ/f3lPGkRUHFIqzQFXcqXlFq DKSPHd/v5hLAYhuEUsUKAhTwv83/YP4YNIpZNkZqwIOijNbIp4WE3igKBpLp1lnncDR7 BErHVFZxT8K7Cqd+sr8ilIYR+rrajBJVqSBruIYAIe0TnoDl9Ix/cnPfbbhc47Uc7AtW mAng==
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: plug-bounces@lists.phillylinux.org

Also, a big part of this is how you browse the web and how you block the web.

== Browsing the Web ==

I use NoScript with Firefox for browsing. I have most plug-ins disabled save for flash (I don't even usually run Java). This should be a requirement for you on any machine you use to browse the web.

== Blocking the Web ==

You should also consider running your own DNS and filter the web using DNS poisoning. That's what I do at home and works well for protecting all of my devices (Windows, PS3, XBOX, mobile phones over wifi, XYZ web browsing device).

DNS Poisoning using BIND (named).
http://qmail.jms1.net/djbdns/bind-blocking.shtml

I'll even give you a copy of a portion of my DNS configuration. This way you can get started more quickly.

/etc/named.conf
http://fpaste.org/swzi/

named.conf.ads.block + named.conf.log + named.conf.malicious located in /etc/named/
http://fpaste.org/dD6T/

named.conf.ads.block has the majority of the "ad domains" which I block. The list I provided you is blocking 2864 domains.

/var/named/poison is where the DNS poisoning magic happens.
http://fpaste.org/VYsT/

That should be more than enough to get you on your way. To enable/disable ad-blocking using DNS simple comment out the include directives at the bottom of named.conf and restart the named daemon. That's how I do most of my protection at home and it has been very successful. Any time there is a crappy domain I don't want to see any more I just add it to my list of poisoned domains. A real cool side-effect with all of this is that ads and websites inside of flash players are inherently blocked as well without the need to block all flash.

Pretty neat.

SAM

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- Re: [PLUG] "playing nicely with others"
  - From: Ron Kaye Jr <rekaye1005@verizon.net>
- Re: [PLUG] "playing nicely with others"
  - From: Bill East <wm.east@gmail.com>
- Re: [PLUG] "playing nicely with others"
  - From: Mike Joseph <mj@doze.net>
- Re: [PLUG] "playing nicely with others"
  - From: Sam Gleske <sam.mxracer@gmail.com>
- Re: [PLUG] "playing nicely with others"
  - From: Isaac Bennetch <bennetch@gmail.com>
- Re: [PLUG] "playing nicely with others"
  - From: Sam Gleske <sam.mxracer@gmail.com>
- Re: [PLUG] "playing nicely with others"
  - From: Sam Gleske <sam.mxracer@gmail.com>

Prev by Date: Re: [PLUG] "playing nicely with others"
Next by Date: Re: [PLUG] Extra hacked AP
Previous by thread: Re: [PLUG] "playing nicely with others"
Next by thread: Re: [PLUG] "playing nicely with others"
Index(es):
- Date
- Thread