[60490] in North American Network Operators' Group
Re: Port blocking last resort in fight against virus
daemon@ATHENA.MIT.EDU (Christopher L. Morrow)
Wed Aug 13 10:56:43 2003
Date: Wed, 13 Aug 2003 14:53:34 +0000 (GMT)
From: "Christopher L. Morrow" <chris@UU.NET>
To: Mans Nilsson <mansaxel@sunet.se>
Cc: "Stephen J. Wilcox" <steve@telecomplete.co.uk>,
Petri Helenius <pete@he.iki.fi>, nanog@merit.edu
In-Reply-To: <20030813090617.GH61550@sunet.se>
Errors-To: owner-nanog-outgoing@merit.edu
On Wed, 13 Aug 2003, Mans Nilsson wrote:
>
> Even in an imperfect world, the solution lies in the edge, not even
> the CPE, but the end node, if you want to do more than pathetic
> bandaiding of the inherent problem of insecure applications on end
> nodes.
This is the point, atleast I, have been trying to make for 2 years... end
systems, or as close to that as possible, need to police themselves, the
granularity and filtering capabilities (content filtering even) are
available at that level alone.
