[83453] in North American Network Operators' Group
Re: zotob - blocking tcp/445
daemon@ATHENA.MIT.EDU (Randy Bush)
Mon Aug 15 22:36:18 2005
From: Randy Bush <randy@psg.com>
Date: Mon, 15 Aug 2005 16:35:31 -1000
To: Daniel Golding <dgolding@burtongroup.com>
Cc: "Steven M. Bellovin" <smb@cs.columbia.edu>,
Saku Ytti <saku+nanog@ytti.fi>, nanog list <nanog@merit.edu>
Errors-To: owner-nanog@merit.edu
> While its not uncommon to run SMB/Windows file system drive mounts across
> private WANs, doing so across the Internet, on a non-encrypted tunnel, is
> the equivalent of running with scissors.
yep. agree. but, as it does not damage the track, and only opens
the runner to harm, as the track maintainer, it's not mine to legislate
against it.
> I am unaware of any enterprise security folks foolish enough to allow
> that.
i suspect there are risk-takers and fools out there and we just
happen not to know them.
randy
