nanog mailing list archives
Re: ISPs' willingness to take action
From: Sean Donelan <sean () donelan com>
Date: Mon, 27 Oct 2003 11:31:20 -0500 (EST)
On Mon, 27 Oct 2003 kenw () kmsi net wrote:
I said "low hanging fruit". I didn't say "top-to-bottom security analysis".
If I fixed every computer on the Internet today, tomorrow Microsoft would sell 17,000 new insecure installs of Windows. Low-hanging fruit would be to get Microsoft to change its defaults. Then instead tomorrow, there would be 17,000 new "secure" installs of Windows.
Does NOBODY remember that thread?
I remember it well. I also remember ISPs removing the filters after a few hours/days due to customer complaints because the applications they wanted to use across the Internet stopped working. Why shouldn't people be able to use NETBIOS, or Telnet or FTP or any other insecure protocol across the Internet? The security problems aren't due to the packets crossing the Internet. The security problems happen when the packets reach an insecure end-host. It is possible to use NETBIOS securely across the Internet withOUT a VPN. I wouldn't recommend it, but I don't understand why ISPs should prohibit the use of any particular 16-bit port number in a TCP/UDP header.
And if all ISPs were doing all these thing (as you try to imply) we'd all be a lot better off, wouldn't we?
And are you implying ISPs aren't doing anything?
So, am I advocating bad measures?
Naive measures.
Current thread:
- Re: ISPs' willingness to take action, (continued)
- Re: ISPs' willingness to take action Paul G (Oct 26)
- RE: ISPs' willingness to take action Terry Baranski (Oct 26)
- RE: ISPs' willingness to take action Christopher X. Candreva (Oct 27)
- Re: ISPs' willingness to take action Brian Bruns (Oct 26)
- Re: ISPs' willingness to take action Eric Kuhnke (Oct 27)
- Re: ISPs' willingness to take action Alan Spicer (Oct 27)
- Re: ISPs' willingness to take action Sean Donelan (Oct 27)
- Re: ISPs' willingness to take action Joe Abley (Oct 27)
- Re: ISPs' willingness to take action Sean Donelan (Oct 27)
- Re: ISPs' willingness to take action kenw (Oct 27)
- Re: ISPs' willingness to take action Sean Donelan (Oct 27)
- ISPs' willingness to take action [OT USPS] David Lesher (Oct 27)
- Re: ISPs' willingness to take action [OT USPS] Henry Linneweh (Oct 27)
- Re: ISPs' willingness to take action Joe Abley (Oct 27)
- RE: ISPs' willingness to take action Charles Sprickman (Oct 26)
- Re: ISPs' willingness to take action matt (Oct 27)
- Re: ISPs' willingness to take action Niels Bakker (Oct 27)
- RE: ISPs' willingness to take action Bob German (Oct 27)