Show HN: An MCP server that gives your AI assistant write access to /etc./hosts

2 pointsposted 10 hours ago
by Kiog-Aser

1 Comments

opptybiz

9 hours ago

The timed-unblock is the right call — blanket blocking always has legitimate exceptions, and a 5-minute YT window for a required video is exactly the case every other tool gets wrong.

One thing worth calling out: the Cloudflare relay for hosted connections (ChatGPT, Copilot) means a third party sees your block/unblock tool calls before they reach the daemon. For a distraction blocker that's probably low-stakes, but it's worth documenting the trust boundary explicitly — /etc/hosts write access proxied through a relay isn't the same trust model as local-only. If that relay is ever misconfigured or compromised, you're one injected tool call away from arbitrary host redirection.

For Claude Code specifically, the local daemon is already on-machine — does the MCP config support a local transport mode that bypasses the relay entirely?