Re: [FW-1] Blocking Hotbar.com

["Ham, MichaelX" <michaelx.ham@FW1-NOSPAMINTEL.COM>]

Title: Message

 

Hotbar collects and sends all your web site requests to it's server, this includes intranet sites, though it's not the full sites, just the url's it is still a security risk.

 

-Michael

 

-----Original Message-----
From: Brian Lintz [mailto:BLintz@NICOR.COM]
Sent: Tuesday, December 31, 2002 11:32 AM
To: FW-1-MAILINGLIST@beethoven.us.checkpoint.com
Subject: Re: [FW-1] Blocking Hotbar.com

 

You might need to stop this one as well... (skins.hotbar.com)

 

Name:    vip-farm2c.hotbar.com
Addresses:  66.28.234.72, 66.28.234.77
Aliases:  skins.hotbar.com

 

You should (obviously) also make sure users remove the actual hotbar toolbar from

within Internet Explorer though, otherwise you'll have all kinds of browser troubles

when hotbar can't dial home to get its updates..  (does that each time you open

the browser window..)   (note: yahoo toolbar has similar functionality.. calls home

all day long..)

 

Personally, I thought hotbar was a cool thing -- but that's a different issue altogether;

if you've decided to block it, you need to watch for the other hostnames the client

connects to.. :)

 

--Brian

-----Original Message-----
From: Jalen, Ken [mailto:ken.jalen@SALTRIVER.PIMA-MARICOPA.NSN.US]
Sent: Tuesday, December 31, 2002 12:56 PM
To: FW-1-MAILINGLIST@beethoven.us.checkpoint.com
Subject: [FW-1] Blocking Hotbar.com

Has anyone successfully blocked this Spyware website?  I blocked the network of 65.121.237.0/24 and it still makes it past my FW-1

 

Ken Jalen

Network Administrator

Information Systems

Saltriver Pima-Maricopa Indian Community

10,005 E.Osborn RD

Scottsdale,AZ 85256

FAX

(mobile)

@tmomail.net  (mobile e-mail)

ken.jalen@saltriver.pima-maricopa.nsn.us

ken.jalen@SRPMIC-nsn.gov