[84538] in North American Network Operators' Group
re: commonly blocked ports (but not on backbones)
daemon@ATHENA.MIT.EDU (brett watson)
Wed Sep 14 18:28:48 2005
To: nanog@merit.edu
From: brett watson <brett@the-watsons.org>
Date: Wed, 14 Sep 2005 15:28:20 -0700
Errors-To: owner-nanog@merit.edu
> seems to me this is the wrong question... a default security
> "posture" (network or system, isp or enterprise or any type of
> entity) should be: "if it's not explicitly allowed, it's denied."
apologies, i see the original poster was talking about a
*backbone*... my mind was on campus/edge/customer networks. this
policy, of course, does not apply to backbones (unless you want an
avalanche of customer calls).
-b
