Security Basics mailing list archives

RE: Would you pay more ...

From: Steven Trewick <STrewick () joplings co uk>
Date: Wed, 7 Jul 2004 16:43:45 +0100

Actually Qwest with MSN  or maybe just MSN in it self
offers this. When you receive DSL from msn you get a
dsl modem that is locked down. Practically nothing
gets in or out on them



Actually, that isn't /entirely/ correct  :

http://www.broadbandreports.com/faq/9446



00.2

~Harrison
--- Jeff <Jeff@Not_A_Real_Address.com> wrote:

Regarding standard consumer broadband connections
...

Would you pay more to only have the following
destination ports open
to the internet originating from your broadband
modem:

      tcp  21 - ftp
      tcp  22 - ssh
      tcp  25 - smtp
tcp, udp  53 - dns
      tcp  80 - www
      tcp 110 - pop3
      tcp 119 - nntp
      udp 123 - ntp
      tcp 443 - secure www

(Arguments for/against specific ports solicited. I
purposely left
some out that I don't use. Curious how significant
they are to
others. IMAP4 and icmp protocols come to mind)

ALTERNATIVELY, would you like it if this was the
STANDARD package and
additional ports were considered optional, and
required payment.

LASTLY, this could start out as the NEW Secure way
to go! It simply
requires that your existing cable modem be upgraded
(replaced) at a
cost of $50-$75. All new installations would recieve
these as part
of the std pkg.

(I know some small businesses that would LOVE to
have this. I know
because they've called me to resolve some "weird
problems" and look
at me funny when I tell them that they should have
had a firewall all
along.)

I would REALLY like to hear from those of you that
work in the ISP
field. I have always been on the receiving end of an
ISP -- never
worked in that trench. But I suspect that this type
of firewall could
be built into every single cable/dsl modem used at
little expense.
Indeed, could save lots of money on bandwidth.

Consider Grandma now ... she typically isn't a gamer
and need other
ports open. Nor does she work at home and require a
vpn. BUT she is
the MOST likely to get hit by some exploit, and it's
her damned box
(x 1,000,000) uselessly eating up bandwidth because
some smart-aleck
*&#$ing script kiddie bas(*&#$

.... ohm-yelli-mon ... ohm-yelli-mon ... OK, ok,
better.


Jeff

--------------------------------------------------------------
-------------

Ethical Hacking at the InfoSec Institute. Mention
this ad and get $545 off 
any course! All of our class sizes are guaranteed to
be 10 students or less 
to facilitate one-on-one interaction with one of our
expert instructors. 
Attend a course taught by an expert instructor with
years of in-the-field 
pen testing experience in our state of the art
hacking lab. Master the skills 
of an Ethical Hacker to better assess the security
of your organization. 
Visit us at:

http://www.infosecinstitute.com/courses/ethical_hacking_training.html

--------------------------------------------------------------
--------------



=====
_____________________________________
Harrison Gladden <linuxugur80 () yahoo com>
Tel:(515)708-1065

**Shoot for the moon.
Even if you miss, you'll land among the stars.**


              
__________________________________
Do you Yahoo!?
Yahoo! Mail Address AutoComplete - You start. We finish.
http://promotions.yahoo.com/new_mail 

--------------------------------------------------------------
-------------
Ethical Hacking at the InfoSec Institute. Mention this ad and 
get $545 off 
any course! All of our class sizes are guaranteed to be 10 
students or less 
to facilitate one-on-one interaction with one of our expert 
instructors. 
Attend a course taught by an expert instructor with years of 
in-the-field 
pen testing experience in our state of the art hacking lab. 
Master the skills 
of an Ethical Hacker to better assess the security of your 
organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
--------------------------------------------------------------
--------------



The information contained in this e-mail is confidential and may be privileged, it is intended for the addressee only. 
If you have received this e-mail in error please delete it from your system. The statements and opinions expressed in 
this message are those of the author and do not necessarily reflect those of the company. Whilst Joplings Group 
operates an e-mail anti-virus program it does not accept responsibility for any damage whatsoever that is caused by 
viruses being passed.
joplings.co.uk


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Re: Would you pay more ..., (continued)
- - Re: Would you pay more ... John Fastabend (Jul 12)
- Re: Would you pay more ... Joe Barrett (Jul 06)
- Re: Would you pay more ... Florian Streck (Jul 06)
- Re: Would you pay more ... Harrison Gladden (Jul 07)
- Re: Would you pay more ... Dave Dearinger (Jul 07)
- Re: Would you pay more ... Calin Don (Jul 08)
  - Re: Would you pay more ... Don Voss (Jul 09)
    - Re: Would you pay more ... John Fastabend (Jul 12)
- RE: Would you pay more ... Mosley, Larry (Jul 06)
- RE: Would you pay more ... Nick Benigno (Jul 07)
- RE: Would you pay more ... Steven Trewick (Jul 07)