[105204] in North American Network Operators' Group
Re: DNS problems to RoadRunner - tcp vs udp
daemon@ATHENA.MIT.EDU (Randy Bush)
Sat Jun 14 17:58:52 2008
Date: Sun, 15 Jun 2008 06:58:25 +0900
From: Randy Bush <randy@psg.com>
To: Simon Leinen <simon.leinen@switch.ch>
In-Reply-To: <aaod63g17j.fsf@switch.ch>
Cc: nanog@merit.edu
Errors-To: nanog-bounces@nanog.org
> Mostly I think that people "approaching this from a security
> perspective only" often forget that by fencing in the(ir idea of the)
> current status quo, they often prevent beneficial evolution of
> protocols as well, contributing to the Internet's "ossification".
folk do not always get the implications of the internet being a
'disruptive technology,' and that this is a good thing which needs to be
preserved and even enhanced. they use skype and want to block ports.
it's rampant. the old siliness of blocking tcp/53 is just one of the
corner cases that keeps popping up publicly. try using this year's crop
of innovative apps from behind some corporate firewall. packet/port
xenophobia overrides the users' desire to be productive every time. it
departments are paid to minimize cost and risk, not maximize workers'
productivity.
randy
