RE: HOSTS File -

• From: "Steve Moffat" <steve@xxxxxxxxxx>
• To: "ISA Mailing List" <isalist@xxxxxxxxxxxxx>
• Date: Sat, 19 Nov 2005 16:23:10 -0400

Ok....$64,000 question.
 
Why are the users local admins???

________________________________

From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx] 
Sent: Saturday, November 19, 2005 2:55 PM
To: ISA Mailing List
Subject: HOSTS File - 


Steve: This is a workgroup environment, DHCP is the Linksys (no scopes).
GPO will get applied to ALL users, including the Admin (Unless you can
tell me how to enforce a local GPO for only some users). 
 
Tom: (Controlling it at the NAT device is going to be the easiest way to
go, but it'll be worth your time and effort to learn about ARP exploits
and IPSec policies, esp. the latter.) *** Agreed.
 
I'm OK on IPSec > can you point me to a source to learn more about ARP
exploits?
 
Joseph Danielsen: MCSA-Messaging, MCP
Network Blade Inc.
49 Marcy Street
Somerset, NJ 08873
Phone: 732-213-0600
 
www.networkblade.com
 

________________________________

From: Steve Moffat [mailto:steve@xxxxxxxxxx]
Sent: Sat 11/19/2005 11:52 AM
To: [ISAserver.org Discussion List]
Subject: [SPAM-HC] - [isalist] RE: HOSTS File - Email found in subject -
Email found in subject - Email found in subject - Email found in subject



http://www.ISAserver.org

Did you try what I suggested with the DHCP scope and the group policy?

S

-----Original Message-----
From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx]
Sent: Saturday, November 19, 2005 11:34 AM
To: ISA Mailing List
Subject: [isalist] HOSTS File - Email found in subject - Email found in
subject - Email found in subject

http://www.ISAserver.org

Thanks Ray!

I didn't think of updating the firmware. Currently, the firmware doesn't
have MAC level access or parental controls.

Since HOSTS doesn't have an easy "one liner", I'll try to upgrade the
firmware or simply pay for a new router out of my own pocket.

Thanks All!

p.s. In the meantime - I'll also research poisoning the ARP cache and
IPSec ideas....sounds fun.

Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc.
49 Marcy Street
Somerset, NJ 08873
(732) 213-0600
www.NetworkBlade.Com

-----Original Message-----
From: Ray Dzek [mailto:Ray.Dzek@xxxxxxxxxxxxxxx]
Sent: Friday, November 18, 2005 1:12 PM
To: [ISAserver.org Discussion List]
Subject: [SPAM-HC] - [isalist] RE: RE: HOSTS File - Email found in
subject - Email found in subject - Email found in subject

http://www.ISAserver.org

Linksys provides for mac level access control.  There are also "parental
control" filters in just about all SOHO routers these days.  Just change
those in the Linksys.  That should at least get them scratching their
heads for a bit.  You can also, depending on which Linksys (WRT54g) you
have, re-flash with 3rd party firmware which would give you even more
control.  Sveasoft, and DD-WRT are the 2 main firmware replacements that
I have used to increase the stability and utility of my Linksys
WRT54g's.  Make sure you read the respective forums before you do
anything.  Linksys has changed their hardware so the newest version of
the WRT54g is not compatible with the replacement firmware.


-----Original Message-----
From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx]
Sent: Thursday, November 17, 2005 10:34 AM
To: [ISAserver.org Discussion List]
Subject: RE: HOSTS File - Email found in subject - Email found in
subject

They're sitting behind a linksys router - don't think DHCP reservations
are possible.

OK - so if you CAN NOT write a one-liner in HOSTS, I'll suggest an
upgraded Linksys router which has controls to deny internet connectivity
to certain computers during certain times...... oh and an aluminum bat.

Thanks

Joseph Danielsen: MCSA-Messaging, MCP
Network Blade Inc.
49 Marcy Street
Somerset, NJ 08873
Phone: 732-213-0600

www.networkblade.com


________________________________

From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx]
Sent: Thu 11/17/2005 1:08 PM
To: [ISAserver.org Discussion List]
Subject: [SPAM-HC] - [isalist] RE: HOSTS File - Email found in subject -
Email found in subject



http://www.ISAserver.org

LLLOOOLLL

Ara Avvali
Boss Audio Systems
Email: ara.avvali@xxxxxxxxxxxxx

-----Original Message-----
From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx]
Sent: Wednesday, November 16, 2005 10:22 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: HOSTS File - Email found in subject

http://www.ISAserver.org

It's an aluminum softball bat.
It's better than wood because instead of the dull "thwok", you get a
much more satisfying "bing" when it makes contact with the human skull.

-----Original Message-----
From: Ara Avvali [mailto:ara.avvali@xxxxxxxxxxxxx]
Sent: Wednesday, November 16, 2005 7:50 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: HOSTS File - Email found in subject

http://www.ISAserver.org

Jim,
What is the adjusment tool?
-----Original Message-----
From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx]
Sent: Wednesday, November 16, 2005 2:29 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: [SPAM-HC] - RE: HOSTS File - Email found in
subject

http://www.ISAserver.org

..except that his users are local admins and know the network.
Time for the user adjustment tool, IMHO...


-------------------------------------------------------
   Jim Harrison
   MCP(NT4, W2K), A+, Network+, PCG
   http://isaserver.org/Jim_Harrison/
   http://isatools.org
   Read the help / books / articles!
-------------------------------------------------------


-----Original Message-----
From: Steve Moffat [mailto:steve@xxxxxxxxxx]
Sent: Wednesday, November 16, 2005 14:25
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: [SPAM-HC] - RE: HOSTS File - Email found in
subject

http://www.ISAserver.org

In dhcp, ceate a reserverd IP address for the workstation. Do not assign
a gateway ip address. Use group policy to deny access to the nic
properties.

Easy, clean, simple.

S

-----Original Message-----
From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx]
Sent: Wednesday, November 16, 2005 1:51 PM
To: ISA Mailing List
Subject: [isalist] RE: [SPAM-HC] - RE: HOSTS File - Email found in
subject

http://www.ISAserver.org

The workstation needs network access (shared database on another
computer [tracking fire calls responded to]), but other computers are
allowed internet access. I've even prevented the IE from executing in a
local GPO - but they already found a work around for that i.e. Start
Menu > Windows Update, or any application which has their home page in
the Help menu etc.

The organization has a few guys who know a (little bit) about NIC
settings and will discover the manual configurations - and change them.
And yes, some of them have local admin level.

I'm sure if there is an easy HOSTS line I can enter - this could be my
best solution.

Any?

Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc.
49 Marcy Street
Somerset, NJ 08873
(732) 213-0600
www.NetworkBlade.Com


-----Original Message-----
From: Ben Schorr [mailto:bens@xxxxxxxxxxxxxxxx]
Sent: Wednesday, November 16, 2005 2:41 AM
To: [ISAserver.org Discussion List]
Subject: [SPAM-HC] - [isalist] RE: HOSTS File - Email found in subject

http://www.ISAserver.org

Well, I don't understand why you'd bother having a broadband connection
but deny all workstations access to it.

That said, why not just pass the workstations the loopback address for
DNS server?


Ben M. Schorr
Chief Executive Officer
______________________________________________
Roland Schorr & Tower
737 Bishop St. Suite 1655
Honolulu, Hawaii 96813
Mobile:  808-782-6306
Fax: 808-533-3677
www.rolandschorr.com
bens@xxxxxxxxxxxxxxxx

-----Original Message-----
From: Joseph Danielsen [mailto:JDanielsen@xxxxxxxxxxxxxxxx]
Sent: Tuesday, November 15, 2005 20:39 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] HOSTS File

http://www.ISAserver.org

Is there a way to (using only a HOSTS file) to point all domains back to
the loopback address?

I have a volunteer Organization in workgroup mode, using a Link$y$
broadband router (old) on a cable ISP. They need an easy/quick method to
stop all internet name resolution. Due to current complications, HOSTS
file is my only solution.

Is there a "catch all" line I can do i.e. 172.0.0.1  *.* (*.com) (.com)
etc.

Joseph F. Danielsen, MCSA-Messaging, MCP Network Blade Inc.
49 Marcy Street
Somerset, NJ 08873
(732) 213-0600
www.NetworkBlade.Com



------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jdanielsen@xxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
isalist@xxxxxxxxxx To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jdanielsen@xxxxxxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts:

• » HOSTS File
• » RE: HOSTS File
• » RE: HOSTS File
• » HOSTS File -
• » RE: HOSTS File -
• » RE: HOSTS File -

1. Home
2. isalist
3. Archive
4. 11-2005

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---