Should I make Windows 8.1 Hosts file 'read only' for security reasons?

Eric642 · Aug 25, 2014

Hi,

In other versions of Windows, people sometimes set the hosts file to 'read only'

In Windows 8.1 by default I see it is not "read only" also I've read that Windows Defender monitors the Hosts file in some way, but I'll be switching to a different anti-virus.

Should the Hosts file be 'read only' in Windows 8.1 for security reasons, if another anti-virus than Defender is used?

Does changing the hosts file to 'read only' it do any good, or any harm?

Thanks

boosted1g · Aug 25, 2014

Just get something like BitDefender to protect your computer better then windows, Windows Defender is the equivelant of a high school kid hired to gaurd an electronics store with no alarm sysem and $15 door locks.

If you know what the host file is and what it is for then if you are that worried about it then just create a backup file and restore it if it ever got altered. It has been 5+ years since I have seen viruses messing with the hosts file, and with windows 8 being such a small percent of market share they are not going to bother making a virus to attack what is blocked by 7 which will soon be (if is not already) the most used version of windows.

Tom Tancredi · Aug 25, 2014

Legacy old solution that isn't acceptable in the current versions of Windows. Since Vista (your referencing a old XP solution) you are no longer the 'GOD' of the computer and in Windows 8 your even less then a Admin over the computer. If you monkey with security settings like that, you will inevitably cause more 'harm' then good, with the way the OS is now 'setup' by Microsoft.

That said, the issues the old HOSTS files used to perform are not much a issue any longer, and if you went with a better AV your half way there. You also need a antiMalware, like Malwarebytes, to really protect the computer. It is free but you have to MANUALLY scan, it won't do it for you unless you buy it. I would suggest once a week to once a month manual scan with Malwarebytes is usually best.

What AV did you get may I ask?

Eric642 · Aug 25, 2014

Thanks, maybe I'll leave the hosts file as not 'read only'
You are right I'm used to using XP.

I thought the host file might have changed from being default 'read only' in windows 7, due to Windows Defender in 8 monitoring the file, and as I'm going to use a different AV, I thought that might leave the host file vulnerable.

I do use MBAM, as well as an AV, it seems like a respected Anti-malware program.

I was thinking of getting Avast. I don't really want to stick with Defender. Defender supports ELAM (Early Launch Anti-Malware) though, and I believe Kaspersky does also. I'm not sure if Avast does, and don't know which other AV programs do.

I'm not sure which AV to go for.

Thanks

Tom Tancredi · Aug 25, 2014

AVAST got hacked (the Forums which used the same ID PW normally as what you 'register' your Avast with) and since then the program has degraded measurably with issues. I ran the block using almost every free one out there that exists (a complete list available at www.filehippo.com with the very latest version posted).

I finally settled down with Avira as the best solution, least impact, and high accuracy / protection according to both independent antivirus labs that test monthly all the software out there (sort of like UL Labs). The next ones would be either Panda or Comodo as the other alternatives. The latter had issues on my PC with updating itself.

Eric642 · Aug 28, 2014

Thank you for your helpful answer.

Considering that changing the Hosts file to 'Read Only' might not be such a good idea, are there any other common security tweeks you know of that are not a good idea in Windows 8 / 8.1? Or conversely things that are still a good idea, so far I've unticked the box for "Hide extensions for known file types" as a personal preference I would prefer to see what the file extensions are.

The information on Anti virus products was interesting and helpful, I'll look at the websites for antivirus test labs, it is not always easy to find which anti-malware program / suite would be best.

While you were looking at the different AV programs, did you find any that support ELAM (Early Launch Anti Malware)? I think it seems like a good feature, however I've not found much information about it on websites for anti-malware products.

Regards

Tom Tancredi · Aug 28, 2014

Yeah from my initial Vista analysis I did for an employer, through 7 and now even more so on 8/8.1, really trash your old XP trick list / tools like you did for DOS. They just are not relative to the current state of stuff. I wouldn't EVER tick off to see "SYSTEM FILES" as this lets you see the software shortcuts Vista/7/8 to be backwards compatible (XP older) that confuses the whole things up when your looking at files for example.

ELAM is a pay for feature, and personally not something I rely on, and NEVER trust one from a AV company. AVs are programmed to look for key changes in program files, Malware uses social engineering. Where it will be a normal POP UP Window that apps do (which can't be blocked or tested for ) but is 'engineered' to look like something serious / influence the end user to commit 'normal' program actions (as far as AV understand what is the difference between NIMDA Worm as compared to BF4) that open the system to external actions (allow other malware install, authorize a new 'toolbar', etc.).

So I normally go with the Malwarebytes and do either a weekly or a monthly manual scan on my computers, while Avira does a constant persistent scan of everything.

http://www.av-test.org/en/home/
http://www.av-comparatives.org/

I don't know of any W8.1 tricks or tips yet, as the direction (as you will see in a couple weeks with W9's release) that Windows will be a non-OS like your 'cell phone', and your just paying for 'apps' just like on iPhones. ALL IT Companies (hardware and software) said this is how they ALL were going years ago, and well it is the time that it is now happening.

Just a few FYI: You can't Windows Easy Transfer your data once you go Windows 8.1, and you can't get ANY patches or fixes unless you go Windows 8.1 Update. If a system goes 'down', per MS your data is auto synch when you 'log into' W8 every time to LIVE! Servers, so a simple 'wipe' and 'restore' once you log into Windows 8 it will pull all your data down. As I said, 'cell phone' like.

Eric642 · Sep 1, 2014

Thanks very much for your help, the info about anti-virus programs and ELAM was very useful, thank you for the links.

May I ask, when you say

the issues the old HOSTS files used to perform are not much a issue any longer

why is it not much of an issue now?

Thanks

Tom Tancredi · Sep 1, 2014

HOSTS was used for IP v4 table, where manually you would put in a IP address to a typed route. For example *.google.com 127.0.0.1 would route ANY inputs for the Google domain back to your computer, not to the internet. This was a open file to be edited back in XP days as a way for Viruses / Malware to redirect you to A) Cause web 'hits' people got paid for B) force your computer to go to places they wanted you to go not where your intending.

With Vista forward you are NO LONGER GOD on the computer, EVEN with the Administrator named account, only the built in (and unaccessible) TrustedInstaller is the GOD over your computer. It has rights over everything, and when you circumvent those rights, causes 'Windows' to fail / error. So you can't just 'take over' the computer anymore, you HAVE to play by Microsoft Rules. HOSTS files was one of the first things (also shutting off Elevated Access) that was made a 'domain' of the TrustedInstaller ONLY.

Lastly since Vista the Internet and all devices ran out of IP V4 addressing, so they instituted the newer IP V6, and since Windows 7, has been the 'basis' for your 'connection'. While there is still many IP V4 based resources out there, the main formation of communication relies now (Windows 8) on IP V6, which in turn also makes Windows more a 'cloud OS' like your iPhone or Android device.

Search

Should I make Windows 8.1 Hosts file 'read only' for security reasons?

Eric642

Reputable

Tom Tancredi

boosted1g

Titan

Tom Tancredi

Judicious

Eric642

Reputable

Tom Tancredi

Judicious

Eric642

Reputable

Tom Tancredi

Judicious

Eric642

Reputable

Tom Tancredi

Judicious

TRENDING THREADS

Latest posts

Moderators online

Share this page