[60460] in North American Network Operators' Group
Re: Port blocking last resort in fight against virus
daemon@ATHENA.MIT.EDU (Jack Bates)
Tue Aug 12 17:50:59 2003
Date: Tue, 12 Aug 2003 16:50:22 -0500
From: Jack Bates <jbates@brightok.net>
To: "Christopher L. Morrow" <chris@UU.NET>
Cc: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.53.0308122131070.19594@rampart.argfrp.us.uu.net>
Errors-To: owner-nanog-outgoing@merit.edu
Christopher L. Morrow wrote:
>
> If people want to use the network they need to take the responsibility and
> patch their systems. Blocking should really only be considered in very
> extreme circumstances when your network is being affected by the problem,
> or if the overall threat is such that a short term network-wide block
> would help get over the hump.
Correct, and that's what I consider this; a short term network-wide
block that would help get over the hump. While my network is stable,
that doesn't mean everyone being scanned is stable. There are
undoubtably DOS conditions caused by this worm.
-Jack
