[80800] in North American Network Operators' Group
Re: Blocking port udp/tcp 1433/1434
daemon@ATHENA.MIT.EDU (Brian Russo)
Thu May 12 10:33:47 2005
Date: Thu, 12 May 2005 04:32:51 -1000
From: Brian Russo <brian@entropy.net>
To: Valdis.Kletnieks@vt.edu
Cc: Joe Maimon <jmaimon@ttec.com>, nanog@nanog.org
In-Reply-To: <200505121425.j4CEP6V2010325@turing-police.cc.vt.edu>
Errors-To: owner-nanog@merit.edu
End to end, but I'm afraid current realities do not always permit that
approach and we must occasionally build walls.
Sure, I wish people would fully step up to the plate and demand robust
software/protocols. Secure, strong encryption and software that isn't
filled with buffer overflows and other ludicrously
should-be-over-the-hill bugs. Etc etc..
This is the part where the crickets chirp, and everyone laughs at me.
So, if people want to screw up their own machines in isolation, that's
fine but when it takes down half your network....
- bri
Valdis.Kletnieks@vt.edu wrote:
>On Thu, 12 May 2005 04:15:07 -1000, Brian Russo said:
>
>
>
>>Is there now justification for allowing transit for ms-sql slammer ports?
>>
>>
>
>That depends. Do you believe in end-to-end or walled-garden?
>
>
--
Brian Russo <brian@entropy.net>
(808) 277 8623
