• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
Sign in to follow this  
Followers 0
bradcenter

IP Block lists???

13 posts in this topic

Hi all,

 

Great site here.

 

Something I was thinking about... Does anybody know of a list of IP addresses that could just be plugged into a firewall (to protect multiple computers)???

 

I'm sure it won't get everything, but it could be a nice start.

 

Thanks,

 

Rob

Share this post


Link to post
Share on other sites

Why not just buy a router with a firewall?

 

That'll stop every outside direct attack cold.

 

Try a Linksys BEFSR41 v3. They're about fifty bucks and include a 4-port 10/100 switch built in.

Edited by Tuxedo Jack

Share this post


Link to post
Share on other sites

Thanks for the replies.

 

IE-SPYAD - great if you have a small number of PCs. Same with HOSTS files. I routinely use both of them.

 

As for a hardware firewall/router - I am using one and it works great.

 

What I want to do is a little more than this. I would like to see a giant list of IP addresses or ranges that are related to Spyware etc.

 

I envision this - taking this list, applying it to a firewall (this should work great for the network admins out there) and simply blocking that IP. And every so often, this list gets updated so that others out there simply update their firewalls....

 

I think this should stop a lot of spyware at the doorstep so to speak...

 

Thanks all,

Rob

Share this post


Link to post
Share on other sites

If it was that simple, believe me, we'd all do it.

 

There are simply too many domains to block short of using a domain-name filtering system.

 

Where I work, we have AIX boxes doing exactly that, so we don't have to worry about a lot. It's the new ones that we have to worry about, and we deal with those as they come by submitting their domains to the AIX manager, who adds them to the block database.

Share this post


Link to post
Share on other sites

If you're running WinXP, you can use Protowall and the Blocklist Manager, available at Bluetack's site. It's mostly for anti-P2P monitoring, but one of its largest blocklists is anti-spyware. Its advantage is that it works over all protocols. It is, however, a little tetchy to get started and configured (but it's turnkey after that). The Blocklist Manager will keep the blocklists updated and current, and do it pretty much automatically.

 

I use it in combination with IE-SpyAd and it works like a charm.

Share this post


Link to post
Share on other sites

Also, if you're using a large HOSTS file to block stuff under Windows 2000, make sure you turn off DNS Client in Services. There are known issues with that service and large HOSTS files - it'll make you take ages to connect to a network.

Share this post


Link to post
Share on other sites

With Sygate Personal Firewall 5.5,

Open the Advanced Options, click ADD, then goto PORTS AND PROTOCOLS, Select TCP, two options now appear, in LOCAL box type in 1025 and leave Remote box clear, in the Traffic Direction box select Incomming. Click OK , then OK again...

goto www.grc.com do the shields up, test ur computer, and then thank me... & youre welcome.

carry on soldiers

Swp&Clr

 

 

P.S. if this has helped you, please reply and let me know, thanks...

also please note: that this port is prone to the Netsky worm, that is currently running itself all over the world. Dont believe me, see for yourself at the website of Trend Micro, http://housecall.trendmicro.com/ and check out their virus map of the world and which country is getting hit by what... due to the overwhelming amount of people who have this port 1025 open they are susceptible to these worms and trojans.

i hope i have helped. good luck~

Share this post


Link to post
Share on other sites
If it was that simple, believe me, we'd all do it.

 

There are simply too many domains to block short of using a domain-name filtering system.

http://www.pyrenean.com/dnsk.php is one of them.

 

It's like a superior hosts file.

 

Still it would be nice to block spyware sites by BOTH IP and domain name. Spyware that dialout could conceviably bypass hosts files, by using the ip addresses rather than the domain name.

Share this post


Link to post
Share on other sites

Yes you could always try the Blocklist manager , which offers daily updated IP blocklists and can convert them to most firewall formats for importing , covering Spyware/Adware/Govt/Milt/Ads and and more.

 

I think most of Sponge's spyware IP list has already been covered , as well as a lot of the Webhelpers IP research .

 

worth a look at least.

http://bluetack.co.uk/blmhelp

Edited by Moore

Share this post


Link to post
Share on other sites

Bradcenter, what did you finally end up doing? I have a Watchguard X700 and want to do the same thing.. put in a list of blocked IP's for crapware sites.

 

Thanks,

 

Nick Katsaras

Share this post


Link to post
Share on other sites

Well here's two direct links that are updated regularly, covering a lot of known spyware / adware and general internet crap.

 

http://www.bluetack.co.uk/config/spyware.txt

http://www.bluetack.co.uk/config/ads-track...nd-bad-pr0n.txt

 

you can use the online converter or the Blocklist manager I linked to above for converting the lists into other firewall formats.

 

http://www.bluetack.co.uk/convert.html

 

If anyone wants other formats included they can request them and if they can be added to the converter they will be..

 

A list of supported firewall formats is here:

 

http://www.bluetack.co.uk/formats.html

 

I also posted similar info at spyware warrrior to explain things a little bit more , for anyone afraid to visit the bluetack forum. :D

 

http://www.spywarewarrior.com/viewtopic.php?t=3741

Edited by Moore

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0