From 9ba88745c13f14dfbd2c604ad2d27f9b291991de Mon Sep 17 00:00:00 2001 From: CHEF-KOCH Date: Fri, 14 Aug 2015 18:49:54 +0200 Subject: * README.md update * problematic.txt text file added to list problematic dns/domains that may break some providers --- README.md | 1 + problematic.txt | 34 ++++++++++++++++++++++++++++++++++ 2 files changed, 35 insertions(+) create mode 100644 problematic.txt diff --git a/README.md b/README.md index 62c398b..b55b366 100644 --- a/README.md +++ b/README.md @@ -27,6 +27,7 @@ Known problems that a hosts file can't fix: * An HOSTS file is no guarntee, if the NSA is already in your system it's already to late. * HOSTS files are no guarntee that the NSA or any other attacker/organisation could simply bypass it via 0day or other vulnerablitlys on your system/router. * HOSTS files can't protect against attacks on the hardware, if the router is already compromised or comes with backdoors this list will be easily bypassed anyway. +* Due the complexy of the entire file I can't explain every single IP or PTR record. * .... diff --git a/problematic.txt b/problematic.txt new file mode 100644 index 0000000..27797a5 --- /dev/null +++ b/problematic.txt @@ -0,0 +1,34 @@ +The following addresses may break some providers/dns and are excluded from the main HOSTS file: +----------------------------------------------------------------------------------------------- + +# Deutsche Telekom AG [NSA-affiliated IP ranges] +79.192.0.0 - 79.244.191.255 +80.128.0.0 - 80.146.159.255 +84.128.0.0 - 84.191.255.255 +87.128.0.0 - 87.191.255.255 +91.0.0.0 - 91.23.255.255 +195.145.0.0 - 195.145.255.255 +217.6.95.128 - 217.6.95.255 +217.224.0.0 - 217.255.255.255 +dns1.telekom.de [217.6.95.193] +dns2.telekom.de [192.166.53.61] +secondary006.dtag.net [195.244.245.25] +secondary007.dtag.net [195.244.245.24] +pns.dtag.de [194.25.0.125] +dns51.t-ipnet.de [217.5.100.186] +dns04.btx.dtag.de [194.25.2.133] +dns01.btx.dtag.de [194.25.2.130] + + +# Google [NSA-affiliated IP ranges] +Mountain View CA US +64.233.160.0 - 64.233.191.255 +66.102.0.0 - 66.102.15.255 +66.249.64.0 - 66.249.95.255 +72.14.192.0 - 72.14.255.255 +209.85.128.0 - 209.85.255.255 +216.239.32.0 - 216.239.63.255 +ns3.google.com [216.239.36.10] +ns4.google.com [216.239.38.10] +ns1.google.com [216.239.32.10] +ns2.google.com [216.239.34.10] \ No newline at end of file -- cgit v1.2.3