[27286] in North American Network Operators' Group
Re: Cisco says attacks are due to operational practices
daemon@ATHENA.MIT.EDU (Chris Cappuccio)
Thu Feb 10 22:16:02 2000
Date: Thu, 10 Feb 2000 19:02:25 -0800 (PST)
From: Chris Cappuccio <chris@dqc.org>
To: Paul Ferguson <ferguson@cisco.com>
Cc: nanog@merit.edu
In-Reply-To: <4.2.2.20000210212640.00a2fd10@lint.cisco.com>
Message-ID: <Pine.BSO.4.21.0002101900210.11838-100000@dqc.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
Did anyone even read the post I was responding to ??
>On Thu, 10 Feb 2000, John M. Brown wrote:
>| We have always built martian filters on our edge routers. In addition we
>| built specific filters for ports that are not used, or are bad on the net.
"Ports that are not used" What about when the tcp stack on a particular
machine dynamically allocates a particular port for some tcp connection and
you are filtering that port ? etc....
On Thu, 10 Feb 2000, Paul Ferguson wrote:
| I did't see anyone talking about port-level filtering. What
| I did see, on the other hand, was someone talking about about
| filtering Martian network traffic -- stuff which should not
| be there in the first place.
|
| - paul
|
|
|
---
Gates' Law: Every 18 months, the speed of software halves.
