[80209] in North American Network Operators' Group
Re: Schneier: ISPs should bear security burden
daemon@ATHENA.MIT.EDU (Suresh Ramasubramanian)
Wed Apr 27 06:16:02 2005
Date: Wed, 27 Apr 2005 15:43:51 +0530
From: Suresh Ramasubramanian <ops.lists@gmail.com>
Reply-To: Suresh Ramasubramanian <ops.lists@gmail.com>
To: "Stephen J. Wilcox" <steve@telecomplete.co.uk>
Cc: Jerry Pasker <info@n-connect.net>, nanog@merit.edu
In-Reply-To: <Pine.LNX.4.44.0504271038150.27993-100000@server2.tcw.telecomplete.net>
Errors-To: owner-nanog@merit.edu
On 4/27/05, Stephen J. Wilcox <steve@telecomplete.co.uk> wrote:
>=20
> i do think we have an obligation to try to keep the net clean to a certai=
n
> degree, think anti-ddos wg's etc but providing full security for all user=
s is
> unrealistic. there seems to be some moves to offering partial security an=
d this
> is probably a good thing eg blocking common ms ports will likely be effec=
tive.
>=20
As complete security as possible, to your end users.
That doesnt extend to applying filters to circuits you provision for
your customers (managed T1 type stuff maybe, but definitely, more
useful in the case of end user stuff like at the edge of broadband /
dialup pools)
--=20
Suresh Ramasubramanian (ops.lists@gmail.com)
