[79364] in North American Network Operators' Group
Re: so, how would you justify giving users security?
daemon@ATHENA.MIT.EDU (Florian Weimer)
Mon Apr 4 16:42:25 2005
From: Florian Weimer <fw@deneb.enyo.de>
To: <nanog@merit.edu>
Date: Mon, 04 Apr 2005 22:41:55 +0200
In-Reply-To: <Pine.LNX.4.44.0504042007300.10935-100000@server2.tcw.telecomplete.net>
(Stephen J. Wilcox's message of "Mon, 4 Apr 2005 20:09:34 +0100
(BST)")
Errors-To: owner-nanog@merit.edu
* Stephen J. Wilcox:
> On Mon, 4 Apr 2005, Gadi Evron wrote:
>
>> Anyone ever considered just closing these ports? People will pay you
>> more and just for your ACL services! You can put all your troubles
>
> you would need to do this on a per customer interface basis ie not
> at an aggregation point but on each ppp interface..
Not necessarily. Some Windows malware prefers local address ranges,
but not all. If you quickly disconnect those who caught something,
it's a great help in keeping the number of infected machines down.
You could even spin this in a way that encourages your customers to
recommend you to their friends: no hassle with the filters.
