1

I am creating a batch script that replace hosts file in:

%WinDir%\system32\drivers\etc\hosts

I'm going to replace it with a backup that I have in a specific path:

batch script (run with administrative privileges): 

%homedrive%\test\hosts-replace.bat

Content:

attrib -s -h -r "%WinDir%\system32\drivers\etc\hosts"
copy /v /y "%HOMEDRIVE%\test\hosts" "%WinDir%\system32\drivers\etc\hosts"
attrib +s +h +r "%WinDir%\system32\drivers\etc\hosts"

The problem is that i'm not sure if this is enough, since bleepingcomputer.com recommends running this command before the replacement (But the site does not explain how to reverse the command or its objective):

echo,Y|cacls "%WinDir%\system32\drivers\etc\hosts" /G everyone:f

Question: What is the correct way to replace hosts file with a batch script and reset the permissions on the hosts file to default?

Thanks in advance

Improve this question
5
  • I do not see any answer I only see that he repeats exactly the same thing that I say in my question
    – acgbox
    Commented Mar 1, 2019 at 20:59
  • His answer is correct and complete. Perhaps your question needs work. I suspect what you're trying to ask is how do you reset the permissions on the hosts file to their defaults.
    – shawn
    Commented Mar 1, 2019 at 21:28
  • @shawn You are right. I updated the question by adding what you mention. However I would like to receive an answer that does not repeat the same things that I already tried and that I describe in my question
    – acgbox
    Commented Mar 1, 2019 at 21:58
  • 1
    Re "%WinDir%": From the "SS64 Command line reference": "Set by default as windir=%SystemRoot%. %WinDir% pre-dates Windows NT. Its use in many places has been replaced by the system variable: %SystemRoot%"
    – Peter Mortensen
    Commented Jan 19, 2023 at 15:58
  • @PeterMortensen thanks for this details
    – acgbox
    Commented Jan 19, 2023 at 16:08

2 Answers 2

Reset to default
2

To answer the permissions question, you can revoke everyone access with:

echo,Y|cacls "%WinDir%\system32\drivers\etc\hosts" /e /r everyone

This has the side-effect of revoking all rights since everyone is a group, so you should completely reset the permissions. The easy way is to delete the hosts file instead of copying it over itself, which will reset the permissions as assigned by the parent folder. As long as the etc folder hasn't also had its permissions munged you should be fine with:

del /f "%WinDir%\system32\drivers\etc\hosts"
copy /v "%HOMEDRIVE%\test\hosts" "%WinDir%\system32\drivers\etc\hosts"

Using only copy /y doesn't delete and recreate the file, so it won't reset the permissions to their defaults.

Improve this answer
3

None of it is necessary. An administrator can modify the hosts file, no attrib or cacls required.

Just use:

copy /v /y "%HOMEDRIVE%\test\hosts" "%WinDir%\system32\drivers\etc\hosts"
Improve this answer
1
  • Run the script either as an administrator (right click "Run as Administrator") or create an on-demand Scheduled Task that has as administrator credentials. You can then run the task and it'll perform the task with the admin credentials... the recommended is the scheduled task (in Microsoft's eyes)...
    – Kinnectus
    Commented Mar 1, 2019 at 17:34

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged .