[61693] in North American Network Operators' Group
Re: What do you want your ISP to block today?
daemon@ATHENA.MIT.EDU (Johannes Ullrich)
Wed Sep 3 14:35:40 2003
From: Johannes Ullrich <jullrich@euclidian.com>
Reply-To: jullrich@euclidian.com
To: nanog@merit.edu
In-Reply-To: <200309030147.h831leIa006788@turing-police.cc.vt.edu>
Date: Wed, 03 Sep 2003 14:33:20 -0400
Errors-To: owner-nanog-outgoing@merit.edu
I just summarized my thoughts on this topic here:
http://www.sans.org/rr/special/isp_blocking.php
Overall: I think there are some ports (135, 137, 139, 445),
a consumer ISP should block as close to the customer as
they can.
One basic issue is that people discussing this topic on
mailing lists like these are not average home users. Most
of us here have seen a DOS prompt at some point and know
about "Service Packs" and "Hotfixes".
--
--------------------------------------------------------------
Johannes Ullrich jullrich@euclidian.com
pgp key: http://johannes.homepc.org/PGPKEYS
--------------------------------------------------------------
"We regret to inform you that we do not enable any of the
security functions within the routers that we install."
support@covad.net
--------------------------------------------------------------
