You are correct. I should've pointed to a better link. However, I believe that using the lmhosts file is dangerous. It's been awhile since I've worked solely with netbios, but if I remember correctly, all a hacker has to do is read the information in your lmhosts file and they have all of the network shares you use if they are in there. Access to your machine now gives them easy access to the machines you connect to. Also, once the location of your lmhosts file is found and they have access to your system, they can include your lmhost information into their own using: #INCLUDE \\MARKETING1\public\lmhosts and the MARKETING1 can be replaced with your ip address.
Tracy
>Hi Tracy,
>
>On that page, Chameleon is not exploiting LMHOSTS. They are showing how to use LMHOSTS on your own machine to attempt to connect to a share on another machine.
>
>I don't know why they are going to the trouble...I think you can attempt to connect to a share by going to Start|Run and typing \\254.x.x.x (the IP address), without putting an entry in LMHOSTS.
>
>UPDATE:
>I did a google search on "exploit lmhosts" and found other examples similar to the one you posted (IOW, using lmhosts to try to exploit someone else). Are you aware of a danger in using LMHOSTS on your machine?
>
>>Before you add entries into the LMHOSTS file to resolve your issue, read:
>>
>>
http://www.apocalypseonline.com/security/windows/nt_hack_faq.htm>>
>>
>>>>Wish I knew more about FoxPro so that my answers may be a bit more enlighting. Check out Microsoft KB article Q105997. it defines the differences admirably enough (the key point being at the part about not on the local subnet).
>>>
>>>Thanks for the link. It looks like I really want to use the Hosts file in this case.
>>>
>>>All of the connections are using not routable IPs like 10.0.0.1. We are using these IPs to setup back end file sharing between three web servers. I can ping to all of the Hosts without a problem. But if I try to map a drive in the windows explorer or if I try to access a file using UNC, it doesn't recognize these host names. I can only access the files using the IPs.
>>>
>>>Am I going about this the wrong way?
.·*´¨)
.·`TCH
(..·*
010000110101001101101000011000010111001001110000010011110111001001000010011101010111001101110100
"When the debate is lost, slander becomes the tool of the loser." - Socrates
Vita contingit, Vive cum eo. (Life Happens, Live With it.)
"Life is not measured by the number of breaths we take, but by the moments that take our breath away." -- author unknown
"De omnibus dubitandum"
