[61688] in North American Network Operators' Group
Re: Automatic shutdown of infected network connections
daemon@ATHENA.MIT.EDU (Matthew S. Hallacy)
Wed Sep 3 14:19:24 2003
Date: Wed, 3 Sep 2003 13:16:55 -0500
From: "Matthew S. Hallacy" <poptix@techmonkeys.org>
To: Nathan E Norman <nnorman@incanus.net>, nanog@merit.edu
In-Reply-To: <20030903151216.GC8925@incanus.net>
Errors-To: owner-nanog-outgoing@merit.edu
On Wed, Sep 03, 2003 at 10:12:16AM -0500, Nathan E Norman wrote:
> What you said is highlighted above. I don't think I misread it ... I
> may have misunderstood what you meant. Did you intend to take issue
> _only_ with rate limiting, as opposed to filtering, or are you taking
> issue with the broad filtering described, or both? i'm trying to
> parse "Why in the world ..." :-)
I was taking issue with the "deny all, allow pop3, smtp, http, .." + rate
limit approach, I did see the 'filtering at the modem' part, perhaps restating
the ability of DOCSIS compliant CPE's was confusing.
--
Matthew S. Hallacy FUBAR, LART, BOFH Certified
http://www.poptix.net GPG public key 0x01938203
