[70194] in North American Network Operators' Group
RE: FW: Worms versus Bots now religion host security vs firewall/nat/acl
daemon@ATHENA.MIT.EDU (Smith, Donald)
Tue May 4 18:48:13 2004
Date: Tue, 4 May 2004 16:47:27 -0600
From: "Smith, Donald" <Donald.Smith@qwest.com>
To: "Rob Nelson" <ronelson@vt.edu>, "Daniel Senie" <dts@senie.com>,
"Sean Donelan" <sean@donelan.com>
Cc: <nanog@merit.edu>
Errors-To: owner-nanog-outgoing@merit.edu
The goal of the document is clearly stated below.=20
Feel free to read the document and make suggestions (within scope) for
improvements.
The document is not intended to take the place of hardening XP
documents.
Today I learned from Sean that the firewall portion of XP sp1 comes up
after services are enabled.
I will request that information be added to the pdf.
I am NOT arguing against firewalls. I like them, I use them, their
grrrrrrrrrrrrrrrrrr8!
Security in depth is a good idea, one that I support, encourage and
practice.
Donald.Smith@qwest.com GCIA
http://pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0xAF00EDCC
pgpFingerPrint:9CE4 227B B9B3 601F B500 D076 43F1 0767 AF00 EDCC
kill -13 111.2=20
> -----Original Message-----
> From: Rob Nelson [mailto:ronelson@vt.edu]=20
> Sent: Tuesday, May 04, 2004 4:26 PM
> To: Smith, Donald; Daniel Senie; Sean Donelan
> Cc: nanog@merit.edu
> Subject: RE: FW: Worms versus Bots
>=20
>=20
>=20
> >The goal of this document is help new XP users survive long=20
> enough to=20
> >do their updates. Many of them cant/wont put up=20
> acls/nat/firewalls ...=20
> >but if they follow the steps listed they have a better chance of
> >successfully downloading and updating their new machine then=20
> they will
> >have with OUT these steps.
> >It is not meant as a complete XP hardening document. There=20
> are lots of
> >documents that discuss in detail how to harden
> >windows (xp,nt,2k...).
>=20
> If the person doesn't continue to do acls/nat/firewalls,=20
> they'll just get=20
> infected after the next hole is discovered. And yes, there=20
> are plenty of=20
> holes that a firewall/nat box won't fix. Still, better than=20
> the user only=20
> doing Windows Update on the day of install and never having a=20
> firewall...
>=20
> Rob Nelson
> ronelson@vt.edu
>=20
>=20
