nanog mailing list archives

Re: Port blocking last resort in fight against virus

From: "Petri Helenius" <pete () he iki fi>
Date: Wed, 13 Aug 2003 12:33:47 +0300

 
In your world DoS traffic would be free to roam the networks as it pleased 
without being throttled sensibly at ingress?

Throttling is a different from blocking. Sensible traffic management does not 
break applications nor network transparency. You are free to choose when to
forward each packet.

Or the dumb [wannabee] IT guy runs some telnet/ftp/filesharing service without
passwords and its ok for the whole world to access the private system coz its
his fault?

This means your application security infrastructure already failed if some filesharing
application is running on a machine which also has access to data in the internal
disk shares.

Pete

Current thread:

Re: Port blocking last resort in fight against virus, (continued)
- - - Re: Port blocking last resort in fight against virus neal rauhauser 402-301-9555 (Aug 13)
    - Re: Port blocking last resort in fight against virus Jason Houx (Aug 13)
    - Message not available
    - firewall == network diaper, ranting in HTML neal rauhauser 402-301-9555 (Aug 14)
    - Re: Port blocking last resort in fight against virus Stephen J. Wilcox (Aug 13)
    - Re: Port blocking last resort in fight against virus Mans Nilsson (Aug 13)
    - Re: Port blocking last resort in fight against virus Stephen J. Wilcox (Aug 13)
    - Re: Port blocking last resort in fight against virus Mans Nilsson (Aug 13)
    - Re: Port blocking last resort in fight against virus Christopher L. Morrow (Aug 13)
    - Re: Port blocking last resort in fight against virus Jack Bates (Aug 13)
    - Re: Port blocking last resort in fight against virus Christopher L. Morrow (Aug 13)
    - Re: Port blocking last resort in fight against virus Petri Helenius (Aug 13)
    - Re: Port blocking last resort in fight against virus Niels Bakker (Aug 13)
    - Re: Port blocking last resort in fight against virus Christopher L. Morrow (Aug 13)
  - Re: Port blocking last resort in fight against virus Mans Nilsson (Aug 12)
    - RE: Port blocking last resort in fight against virus Bob German (Aug 12)
    - Re: Port blocking last resort in fight against virus Jack Bates (Aug 12)
    - Re: Port blocking last resort in fight against virus mike harrison (Aug 12)
  - Re: Port blocking last resort in fight against virus Christopher L. Morrow (Aug 12)
    - Re: Port blocking last resort in fight against virus Jack Bates (Aug 12)
    - Re: Port blocking last resort in fight against virus Christopher L. Morrow (Aug 12)
    - Re: Port blocking last resort in fight against virus Jack Bates (Aug 12)

(Thread continues...)