[64520] in North American Network Operators' Group
Re: ISPs' willingness to take action
daemon@ATHENA.MIT.EDU (Matthew Sullivan)
Mon Oct 27 05:07:20 2003
Date: Mon, 27 Oct 2003 20:06:25 +1000
From: Matthew Sullivan <matthew@sorbs.net>
In-reply-to:
<5AFA5A2C102DAB4692ABC1E87E0780CA05D5023E@OCCLUST02EVS1.ugd.att.com>
To: "Stewart, William C (Bill), RTSLS" <billstewart@att.com>
Cc: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
Stewart, William C (Bill), RTSLS wrote:
>I'm really surprised to hear the assertion that people are
>leaving unfirewalled Exchange servers out on the net.
>Is this actually common? /shudders...
>
>
If that causes you to shudder I won't tell you the extend of the
Exchange Servers I have found on the internet to date.
The problem is more that there is no 'easy' VPN solution, and without it
you have the situation of companies making Exchange accessable in a
semi-unfirewalled state (semi in that some ports are firewalled however
the Microsoft ports are not).
/ Mat
PS: Some of the worst are in the SORBS database because they couldn't
even work out how to secure them against simple relay.
