[79389] in North American Network Operators' Group
Re: so, how would you justify giving users security?
daemon@ATHENA.MIT.EDU (Stephen J. Wilcox)
Tue Apr 5 09:21:30 2005
Date: Tue, 5 Apr 2005 14:21:02 +0100 (BST)
From: "Stephen J. Wilcox" <steve@telecomplete.co.uk>
To: Florian Weimer <fw@deneb.enyo.de>
Cc: nanog@merit.edu
In-Reply-To: <871x9quve4.fsf@deneb.enyo.de>
Errors-To: owner-nanog@merit.edu
On Mon, 4 Apr 2005, Florian Weimer wrote:
> * Stephen J. Wilcox:
>
> > On Mon, 4 Apr 2005, Gadi Evron wrote:
> >
> >> Anyone ever considered just closing these ports? People will pay you
> >> more and just for your ACL services! You can put all your troubles
> >
> > you would need to do this on a per customer interface basis ie not
> > at an aggregation point but on each ppp interface..
>
> Not necessarily. Some Windows malware prefers local address ranges, but not
> all. If you quickly disconnect those who caught something, it's a great help
> in keeping the number of infected machines down. You could even spin this in a
> way that encourages your customers to recommend you to their friends: no
> hassle with the filters.
I thought of that but then its only half a filtering effort, how would you
package it up 'Telecomplete Broadband **Now with a bit of filtering**' ?
Then a bunch of smallprint about how you dont actually provide any additional
security? :)
Steve
