[104366] in North American Network Operators' Group
Re: [NANOG] Microsoft.com PMTUD black hole?
daemon@ATHENA.MIT.EDU (Tony Finch)
Thu May 8 08:54:53 2008
Date: Thu, 8 May 2008 13:54:41 +0100
From: Tony Finch <dot@dotat.at>
To: Deepak Jain <deepak@ai.net>
In-Reply-To: <4822280A.2030506@ai.net>
Cc: nanog@merit.edu
Errors-To: nanog-bounces@nanog.org
On Wed, 7 May 2008, Deepak Jain wrote:
>
> I know of a tool that a major financial institution uses when certifying
> your networks security -- that scrapes the version number from your
> ESTMP banner to decide whether you comply or not (and other banners).
> (Rather than actually testing for a specific vulnerability). Simply
> blocking all of these packets from their test host gives you a high
> passing score; possibly a perfect one. [Irony and humor aside...]
Cisco PIX/ASA firewalls in SMTP fuxup mode are so incredibly broken.
Possibly the worst SMTP implementation ever.
Tony.
--
f.anthony.n.finch <dot@dotat.at> http://dotat.at/
FISHER GERMAN BIGHT: VARIABLE 3, BUT EASTERLY 4 OR 5 IN SOUTH GERMAN BIGHT.
SLIGHT. FOG PATCHES. MODERATE OR GOOD, OCCASIONALLY VERY POOR.
_______________________________________________
NANOG mailing list
NANOG@nanog.org
http://mailman.nanog.org/mailman/listinfo/nanog
