On Fri, Nov 01, 2013 at 09:16:33PM +0100, Stefan Wollny wrote:
In parallel I asked conformal for advice and got this answer:
### QUOTE ###
Adsuck no longer works on OpenBSD when using DHCP due to the removal of
the ability to overide the target /etc/resolv.conf.
### QUOTE END ###
Am Sat, 19 Oct 2013 05:42:04 -0400
schrieb Eric Furman ericfur...@fastmail.net:
Holy Jesus, nobody read this guys email.
He is not an administrator trying to block users
access to facebook, he just doesn't want facebook snooping
him when he visits other websites.
He has been given the right
On Fri, Oct 18, 2013 at 8:24 PM, Clint Pachl pa...@ecentryx.com wrote:
Running your own own DNS resolver is the best solution to deny the whole
network facebook access. With Unbound this is simple:
# This will block facebook.com and all subdomains.
local-zone: facebook.com redirect
host file its good but does not stop web proxy's
From: stefan.wol...@web.de
To: misc@openbsd.org
Subject: Re: Blocking facebook.com: PF or squid?
Date: Mon, 21 Oct 2013 18:26:57 +0200
Hi Sico!
Hi list!
[stuff deleted for brevity]
I am in a similar situation (squid at home) and I
Hi Sico!
Hi list!
[stuff deleted for brevity]
I am in a similar situation (squid at home) and I simply have a
blacklist with lines like these:
doubleclick
facebook
scorecardresearch
Works like a charm for me, and no need to look up IP address blocks
or anything like that. And since I am
On Sun, Oct 20, 2013 at 01:04:01AM +0200, Stefan Wollny wrote:
[stuff deleted for brevity]
I am in a similar situation (squid at home) and I simply have a
blacklist with lines like these:
doubleclick
facebook
scorecardresearch
Works like a charm for me, and no need to look up IP
Hello Stefan,
at home, i blocked facebook by creating an empty DNS zone facebook.com
on my local bind server. It works like a charm.
--
Best regards,
Loïc BLOT,
UNIX systems, security and network engineer
http://www.unix-experience.fr
Le samedi 19 octobre 2013 Ã 00:27 +0200, Stefan Wollny a
On Sat, Oct 19, 2013 at 12:27:38AM +0200, Stefan Wollny wrote:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my laptop to
block facebook.com via hosts-file.
snip
My question is on the squid-server
Holy Jesus, nobody read this guys email.
He is not an administrator trying to block users
access to facebook, he just doesn't want facebook snooping
him when he visits other websites.
He has been given the right answer already.
Adsuck will solve all of his problems.
It will block facebook and any
On Sat, Oct 19, 2013 at 05:42:04AM -0400, Eric Furman wrote:
Holy Jesus, nobody read this guys email.
He is not an administrator trying to block users
access to facebook, he just doesn't want facebook snooping
him when he visits other websites.
He has been given the right answer already.
On 2013-10-19 Sat 01:56 AM |, Stefan Wollny wrote:
No, no: The squid is running on a regular server at home securing the
PCs and the laptop once I am around.
Maybe feed a modified version of this list to Squid (fb ad servers are
in there, adjust to block the whole thing):
On 10/18/2013 at 8:41 PM Chris Cappuccio wrote:
|i'd imagine that putting 'www.facebook.com' in your hosts file
will do it,
|unless the browser ignores /etc/hosts
|
|[snip]
=
Don't forget to also block fbcdn.com, fbcdn.net and fb.com
Am Sat, 19 Oct 2013 00:27:38 +0200
schrieb Stefan Wollny stefan.wol...@web.de:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data
[ ... ]
Hi there again!
First I'd like to thank all who replied - I received way
Am Sat, 19 Oct 2013 11:34:57 +0200
schrieb Loïc BLOT loic.b...@unix-experience.fr:
Hi Loïc,
thank you for sharing your experience. This solution has come up before
and I think this is what I want to do.
Follow-up question: You did this using bind?
Again thank you and
have a nice sunday!
Am Sat, 19 Oct 2013 10:36:31 +0200
schrieb Sico Bruins r...@msh.xs4all.nl:
On Sat, Oct 19, 2013 at 12:27:38AM +0200, Stefan Wollny wrote:
Hi there,
Hi Sico!
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on
Am Sat, 19 Oct 2013 05:42:04 -0400
schrieb Eric Furman ericfur...@fastmail.net:
Holy Jesus, nobody read this guys email.
He is not an administrator trying to block users
access to facebook, he just doesn't want facebook snooping
him when he visits other websites.
He has been given the right
Am Sat, 19 Oct 2013 09:47:07 -0400
schrieb Mike. the.li...@mgm51.com:
On 10/18/2013 at 8:41 PM Chris Cappuccio wrote:
|i'd imagine that putting 'www.facebook.com' in your hosts file
will do it,
|unless the browser ignores /etc/hosts
|
|[snip]
=
Don't forget to also
Am Fri, 18 Oct 2013 17:24:52 -0700
schrieb Clint Pachl pa...@ecentryx.com:
Hi Clint!
mia wrote, On 10/18/13 16:33:
If you're handling DHCP for all of the traffic for your site, why
not just set up a dns server, point your dhcp clients to this DNS
server and create an authoritative zone
Am Sat, 19 Oct 2013 13:03:56 +0100
schrieb skin...@britvault.co.uk (Craig R. Skinner):
On 2013-10-19 Sat 01:56 AM |, Stefan Wollny wrote:
No, no: The squid is running on a regular server at home securing
the PCs and the laptop once I am around.
Maybe feed a modified version of this
Am Fri, 18 Oct 2013 21:20:16 -0400
schrieb Mike. the.li...@mgm51.com:
On 10/19/2013 at 12:27 AM Stefan Wollny wrote:
|Hi there,
|[snip]
|
|My question is on the squid-server I have running at home: What
|would make more sense - blocking facebook.com via pf.conf alike
or are
|there
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my laptop to
block facebook.com via hosts-file. Interestingly this failed: Calling
http://www.facebook.com; always resulted in a lookup for
Regards,
The way it gets blocked (but not all for a wise kid) properly is via CDIR and
block DNS via OpenDNS services
Greetings.
2013/10/18 Stefan Wollny stefan.wol...@web.de
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for
On Sat, 19 Oct 2013, Stefan Wollny wrote:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my laptop to
block facebook.com via hosts-file. Interestingly this failed: Calling
http://www.facebook.com;
On 19 October 2013 00:27, Stefan Wollny stefan.wol...@web.de wrote:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my laptop to
block facebook.com via hosts-file. Interestingly this failed: Calling
Hi Andres,
yes - I have read about OpenDNS' services and that many out there are
really happy with them.
But I try to do my homework first before relying on s.o.
else: I _do_ have this OpenBSD-based squid-server - why not use it to
it's full potential? Might not be a big deal traffic-wise, but
On 10/18/13 18:27, Stefan Wollny wrote:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my laptop to
block facebook.com via hosts-file. Interestingly this failed: Calling
http://www.facebook.com;
Am Fri, 18 Oct 2013 19:21:44 -0400
schrieb Brian McCafferty br...@mccafferty.ca:
[ ... ]
If you use dhclient on your laptop, I think you need to make sure to
specify lookup file bind (the search order) to have the hosts file
checked before DNS server. ie- in resolv.conf.tail
bind file is the
Am Fri, 18 Oct 2013 19:33:11 -0400
schrieb mia kmiy...@comcast.net:
[ ... ]
If you're handling DHCP for all of the traffic for your site, why not
just set up a dns server, point your dhcp clients to this DNS server
and create an authoritative zone for facebook.com that points to
somewhere
Am Sat, 19 Oct 2013 01:02:58 +0200
schrieb Marios Makassikis mmakassi...@gmail.com:
Hi Marios!
[ ... ]
Anyway: I think I finally managed to block all their IPs via PF and
on this laptop I now feel a little less 'observed'. [Yes, I know -
this is just today's snapshot of IPs!]
Did
On 10/18/13 18:27, Stefan Wollny wrote:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my laptop to
block facebook.com via hosts-file. Interestingly this failed: Calling
http://www.facebook.com; always
Am Fri, 18 Oct 2013 18:02:55 -0500 (CDT)
schrieb Eric Johnson eri...@mathlab.gruver.net:
On Sat, 19 Oct 2013, Stefan Wollny wrote:
Hi there,
having a personal dislike of Facebook (and the MeeToo-systems alike)
for their impertinent sniffing for private data I tried on my
laptop to
mia wrote, On 10/18/13 16:33:
If you're handling DHCP for all of the traffic for your site, why not
just set up a dns server, point your dhcp clients to this DNS server
and create an authoritative zone for facebook.com that points to
somewhere other than facebook?
Running your own own DNS
On 10/19/2013 at 12:27 AM Stefan Wollny wrote:
|Hi there,
|[snip]
|
|My question is on the squid-server I have running at home: What
|would make more sense - blocking facebook.com via pf.conf alike
or are
|there reasons to use squid's ACL instead? Performance? Being
|ultra-paranoid and
i'd imagine that putting 'www.facebook.com' in your hosts file will do it,
unless the browser ignores /etc/hosts
you could always use the url filtering mechanism of relayd combined
with pf redirects, but if people really want to bypass it, they'll
do proxyies (via ssh even) or remote desktop or
34 matches
Mail list logo
