nanog mailing list archives

Re: Blocking port 135?

From: "Stephen Sprunk" <stephen () sprunk org>
Date: Fri, 1 Aug 2003 14:02:21 -0500


Thus spake "Adi Linden" <adil () adis on ca>

http://www.cert.org/advisories/CA-2003-19.html

Would blocking port 135 at the network edge be a prudent preventative
measure?


If you see your job as protecting users from their own ignorance, blocking
135-139 both tcp and udp has been prudent for nearly a decade.  However, not
all providers share that view.

S

Stephen Sprunk         "God does not play dice."  --Albert Einstein
CCIE #3723         "God is an inveterate gambler, and He throws the
K5SSS        dice at every possible opportunity." --Stephen Hawking

Current thread:

Re: Blocking port 135?, (continued)
- - - Re: Blocking port 135? Christopher L. Morrow (Aug 01)
- RE: Blocking port 135? Bob German (Aug 01)
  - RE: Blocking port 135? Adi Linden (Aug 01)
    - RE: Blocking port 135? Jason Robertson (Aug 01)
  - Re: Blocking port 135? Bruce Pinsky (Aug 01)
    - Re: Blocking port 135? Jason Slagle (Aug 02)
    - RE: Blocking port 135? Bob German (Aug 02)
  - Re: Blocking port 135? Crist Clark (Aug 01)
    - Re: Blocking port 135? Justin Shore (Aug 03)
- Re: Blocking port 135? Jared Mauch (Aug 01)
- Re: Blocking port 135? Stephen Sprunk (Aug 01)
- RE: Blocking port 135? Chris Johnston (Aug 01)
- Re: Blocking port 135? Mans Nilsson (Aug 02)
  - Re: Blocking port 135? Jack Bates (Aug 02)
    - Re: Blocking port 135? Mans Nilsson (Aug 02)
    - Re: Blocking port 135? Sean Donelan (Aug 02)
    - Re: Blocking port 135? Christopher L. Morrow (Aug 02)
  - Re: Blocking port 135? Valdis . Kletnieks (Aug 03)
- RE: Blocking port 135? Drew Weaver (Aug 01)
- RE: Blocking port 135? Michel Py (Aug 02)