[56496] in North American Network Operators' Group
Re: Port 445 issues (was: Port 80 Issues)
daemon@ATHENA.MIT.EDU (Vadim Antonov)
Mon Mar 10 05:27:42 2003
Date: Mon, 10 Mar 2003 02:26:35 -0800 (PST)
From: Vadim Antonov <avg@kotovnik.com>
To: Sean Donelan <sean@donelan.com>
Cc: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.44.0303091736530.1008-100000@clifden.donelan.com>
Errors-To: owner-nanog-outgoing@merit.edu
I'm just waiting for hakerz to finally figure out that having the port
number a hash of host address will effectively make port-based
"notch" filtering useless. Usin
On Sun, 9 Mar 2003, Sean Donelan wrote:
> Blocking ports in the core doesn't stop stuff from spreading. There are
> too many alternate paths in the core for systems to get infected through.
> In reality, backbones dropped 1434 packets as a traffic management practice
> (excessive traffic), not as a security management practice (protecting
> users).
