[27575] in North American Network Operators' Group
Re: government eavesdropping
daemon@ATHENA.MIT.EDU (Chris Cappuccio)
Fri Feb 25 01:59:11 2000
Date: Thu, 24 Feb 2000 22:57:15 -0800 (PST)
From: Chris Cappuccio <chris@dqc.org>
To: Brian Wallingford <brian@meganet.net>
Cc: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.10.10002242231120.8533-100000@cerise>
Message-ID: <Pine.BSO.4.21.0002242250450.3727-100000@dqc.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Thu, 24 Feb 2000, Brian Wallingford wrote:
| Specifically, what have Merit, and presumably yourself done that any
| reasonably clued ISP hasn't? Aside from responsible subneting, and
| standard non-intrusive filtering, what can be done? It seems to me that
| beyond that, the burden of safeguarding data falls on the end-user.
|
Obviously, you have never visited any of the less clueful ISPs ;)
Some ISPs that started with 10Mbps hubs have moved up to 100Mbps hubs. For
their servers, and co-location customers.
Some ISPs vlan each customer. Many do something in between both
extremes. (Not that giving each customer a separate vlan is by any means
extreme!!!)
(Not to waste your reading time too much, but this was a topic of concern for
me. Currently I use a combination of 8 port OpenBSD router plus vlans on
OpenBSD to handle all ethernet connectivity in my building!)
---
Reverend Chris Cappuccio
http://www.dqc.org/~chris/
