[32369] in North American Network Operators' Group
RE: ISPs as content-police or method-police
daemon@ATHENA.MIT.EDU (Christian Kuhtz)
Mon Nov 20 12:50:22 2000
From: "Christian Kuhtz" <ck@arch.bellsouth.net>
To: "Ben Browning" <benb@oz.net>
Cc: <nanog@merit.edu>
Date: Mon, 20 Nov 2000 12:42:25 -0500
Message-ID: <NEBBJKIJGLMGELMBGHEOIEPBCCAA.ck@arch.bellsouth.net>
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
In-Reply-To: <5.0.0.25.2.20001120091552.00b0d2e8@mail.oz.net>
Errors-To: owner-nanog-outgoing@merit.edu
[..]
> The point is this: 137-139 are used for NetBIOS and Samba, neither of which
> are secure (or even supported by their vendors, AFAIK) for use out on the
> Internet. I think we can all agree that anyone using them in that
> situation, shouldn't be.
I don't at all disagree.
But, this isn't the same question as.. does this equal to automatically and
strictly blocking such traffic? Who am I to say a customer can't use them if
they decide to do so? Etc etc.
Now, that isn't the same as saying 'I must not provide a mechanism for
customers to protect themselves if they want to'. The opposite is true, I
would like to see such mechanisms.
And I think this conversation would be a lot more fruitful if we focused on
how to provide mechanisms that are opt-in/opt-out/whatever and how to deal
with operational, legal, engineering impact of such a decision, and provide
this in a transparent, easily managable fashion to the customer.
--
Christian Kuhtz <ck@arch.bellsouth.net> -wk, <ck@gnu.org> -hm
Sr. Architect, Engineering & Architecture, BellSouth.net, Atlanta, GA, U.S.
"I speak for myself only."
