Re: ~/.hosts patch

From: John Birrell <jb@xxxxxxxxxxxxxx>
Date: Wed, 21 Jun 2006 06:38:16 +0000

On Wed, Jun 21, 2006 at 08:31:36AM +0200, Harti Brandt wrote:

Wouldn't this enable the same kind of phishing attacks there are under
windows? As far as I remember there are attacks where the hosts file
(don't remember how its called under windows) is rewriten by a virus/java
script/whatever to contain a different IP address for a given hostname?
Suppose someone fakes the website of www.foobank.com, then manages to
insert www.foobank.com with the wrong IP address into ~/.hosts?

Ugh. Now that is a scary thought.

Please kill this patch ASAP.

--
John Birrell
_______________________________________________
freebsd-current@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-current
To unsubscribe, send any mail to "freebsd-current-unsubscribe@xxxxxxxxxxx"

Follow-Ups:
- Re: ~/.hosts patch
  - From: Luigi Rizzo

References:
- ~/.hosts patch
  - From: Justin Hibbits
- Re: ~/.hosts patch
  - From: Mike Jakubik
- Re: ~/.hosts patch
  - From: Brooks Davis
- Re: ~/.hosts patch
  - From: Mike Jakubik
- Re: ~/.hosts patch
  - From: Xin LI
- Re: ~/.hosts patch
  - From: Harti Brandt

Prev by Date: Re: Linux-flashplugin7 & rtld - RFC
Next by Date: Re: libmagic build failures (tmp patch)
Previous by thread: Re: ~/.hosts patch
Next by thread: Re: ~/.hosts patch
Index(es):
- Date
- Thread

Relevant Pages

Re: WindowsUpdate_80244019 Help
... Windows uses the HOSTS file to map IP addys. ... The HOSTS.sam file has been overwritten with a backup of the HOSTS file on my system so I can't see if that entry is unusual or atypical, but it should have no bearing as to any of the MS update servers. ... Scroll down to Win HTTP Web Proxy Auto-Discovery Service ...
(microsoft.public.windowsupdate)
Re: Hacked???
... > appeared that said "If you see this page, your hosts file ... > What folloed was a list pf steps that tell me how to edit ... > all patches for your computer from the Windows Update ... > Are the instructions legitimate or will I make matters ...
(microsoft.public.security.virus)
Re: cant sign into hotmail from IE,
... Did you uninstall the Messenger? ... Also..try updating your script engine: Windows Script 5.6 for Windows 2000 ... Check your HOSTS file for anything that might be blocked. ...
(microsoft.public.windows.inetexplorer.ie6.browser)
Re: EZ Armor question
... Windows 95/98/Me c:\windows\hosts ... open the hosts file with notepad or wordpad. ... making sure you dont get any updates. ... proxy option fixed a lot of stuff that was happing. ...
(microsoft.public.security.virus)
Re: New comp. Got infected before SP2 installed.
... There are worms/viruses that edit the Windows XP Hosts file, ... impossible to connect to web sites for various antivirus program makers and antivirus ... I had waited to connect to the internet until ...
(microsoft.public.windowsxp.general)