Security Basics mailing list archives
RE: Would you pay more ...
From: "Mosley, Larry" <Larry_Mosley () stercomm com>
Date: Tue, 6 Jul 2004 07:57:14 -0400
I wouldn't pay more because I like the flexibility and you can never tell when you might need additional ports. I'm capable of securing my incoming connections (one of the reasons I have a hardware firewall). Actually, it seems like you should pay less since you are getting less flexibility. For small businesses this might not be a good option because you may be running software that needs one of the unlisted ports open. For home users it would be very good, but it would be better if the ISP would simply include a hardware firewall with the package. Finally, some ISPs (Roadrunner here in Columbus, OH) offer a 'business class' package that includes a firewall that they configure plus guaranteed bandwidth Yes you do pay more but in this instance you are also getting more in the form of a firewall (Cisco I believe) and QOS. I'm not in the ISP field, but as an end-user this is my opinion on it. -----Original Message----- From: Jeff [mailto:Jeff@Not_A_Real_Address.com] Sent: Friday, July 02, 2004 2:57 PM To: security-basics () securityfocus com Subject: Would you pay more ... Regarding standard consumer broadband connections ... Would you pay more to only have the following destination ports open to the internet originating from your broadband modem: tcp 21 - ftp tcp 22 - ssh tcp 25 - smtp tcp, udp 53 - dns tcp 80 - www tcp 110 - pop3 tcp 119 - nntp udp 123 - ntp tcp 443 - secure www (Arguments for/against specific ports solicited. I purposely left some out that I don't use. Curious how significant they are to others. IMAP4 and icmp protocols come to mind) ALTERNATIVELY, would you like it if this was the STANDARD package and additional ports were considered optional, and required payment. LASTLY, this could start out as the NEW Secure way to go! It simply requires that your existing cable modem be upgraded (replaced) at a cost of $50-$75. All new installations would recieve these as part of the std pkg. (I know some small businesses that would LOVE to have this. I know because they've called me to resolve some "weird problems" and look at me funny when I tell them that they should have had a firewall all along.) I would REALLY like to hear from those of you that work in the ISP field. I have always been on the receiving end of an ISP -- never worked in that trench. But I suspect that this type of firewall could be built into every single cable/dsl modem used at little expense. Indeed, could save lots of money on bandwidth. Consider Grandma now ... she typically isn't a gamer and need other ports open. Nor does she work at home and require a vpn. BUT she is the MOST likely to get hit by some exploit, and it's her damned box (x 1,000,000) uselessly eating up bandwidth because some smart-aleck *&#$ing script kiddie bas(*&#$ .... ohm-yelli-mon ... ohm-yelli-mon ... OK, ok, better. Jeff --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------------- --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- Re: Would you pay more ..., (continued)
- Re: Would you pay more ... Charley Hamilton (Jul 06)
- Re: Would you pay more ... Steve (Jul 07)
- Re: Would you pay more ... John Fastabend (Jul 12)
- Re: Would you pay more ... Joe Barrett (Jul 06)
- Re: Would you pay more ... Florian Streck (Jul 06)
- Re: Would you pay more ... Harrison Gladden (Jul 07)
- Re: Would you pay more ... Dave Dearinger (Jul 07)
- Re: Would you pay more ... Calin Don (Jul 08)
- Re: Would you pay more ... Don Voss (Jul 09)
- Re: Would you pay more ... John Fastabend (Jul 12)
- Re: Would you pay more ... Don Voss (Jul 09)
- RE: Would you pay more ... Mosley, Larry (Jul 06)
- RE: Would you pay more ... Nick Benigno (Jul 07)
- RE: Would you pay more ... Steven Trewick (Jul 07)
- Re: Would you pay more ... Charley Hamilton (Jul 06)