Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Eh, sure it does.' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Eh, sure it does.
Authored by: vykor on May 26, '04 10:56:16AM

Hmm...on OS X 10.3, that statement is misleading. I've been using the hosts file ever since installation of Panther to block ads, etc, and it's worked fine. I believe in prior system versions you had to run some terminal magic to detach hosts from NetInfo, but now it's definitely a part of the check sequence.

You also should run " lookupd -flushcache " once you add the entry to the hosts file. Or restart your machine. Either way, that makes the new DNS entry stick.



[ Reply to This | # ]
Eh, sure it does.
Authored by: JohnnyMnemonic on May 26, '04 01:31:29PM

Hm. Even after I "lookupd -flushcache", "host" still resolves to a real IP. Do I need to do something else to get the /etc/hosts config loaded? I seem to recall something about NetInfo too--maybe not applicable to Pantherl, but in any case it's not working.



[ Reply to This | # ]
other option? re: Eh, sure it does.
Authored by: webbix on Jun 07, '04 12:27:08PM
try adding to '/etc/hosts.deny'

I read this comment previously but gave it little attention as I keep 'load images' off anyway.

However, using Webmin and playing around with PortSentry I excluded my test machine with the rule I had and ended up doing a web search to find where I was getting blocked. PortSentry with the config I chose (FreeBSD/Mac OS X) had added the IP to the 'hosts.deny' file and it did block all but file sharing and web access (not sure why those worked).

This is the command to Kill the host from PortSentry

KILL_ROUTE="route add -net $TARGET$ -netmask 255.255.255.255 127.0.0.1 -blackhole"

However, please use only at your own risk NOT as recommendation.

[ Reply to This | # ]