nanog mailing list archives
Re: Providers removing blocks on port 135?
From: David B Harris <david () eelf ddts net>
Date: Sat, 20 Sep 2003 18:51:50 -0400
On Sat, 20 Sep 2003 23:22:34 +0100 "Ray Bellis" <rpb () community net uk> wrote:
What we do have though are (optional) *inbound* filters that make sure no-one can connect to their privileged ports over TCP/IP, and a mandatory filter that says only our network can deliver to their SMTP service. We don't get problems with open-relays on dialups. We didn't have any problems with MS-Blaster on dialups either...
I would suggest instead that you have mandatory sending via your relays, and allow inbound connections to port 25. Sympatico, last I checked, didn't have any restrictions until you tripped off their alarms, at which point you needed to configure your smtpd to send mail via their relays. If they continued spewing copious amounts of spam, cut them off entirely until they fix their configuration. There are a couple of pluses to this type of setup; people like me who have dozens of (required) email addresses can forward them all to their home machine. Some of my family also much prefer this even though they've only got one or two email addresses. It also ensures that they can't send spam directly no matter what the source; blocking inbound connections will certainly stop open relays, but it won't stop trojans and worms and whatnot that are really just spamware. (Note that I consider spamware included in other applications and hidden from the user "trojans.")
Attachment:
_bin
Description:
Current thread:
- RE: Providers removing blocks on port 135?, (continued)
- RE: Providers removing blocks on port 135? Owen DeLong (Sep 19)
- RE: Providers removing blocks on port 135? Justin Shore (Sep 19)
- RE: Providers removing blocks on port 135? Owen DeLong (Sep 19)
- RE: Providers removing blocks on port 135? Mark Borchers (Sep 19)
- Re: Providers removing blocks on port 135? bmanning (Sep 19)
- Re: Providers removing blocks on port 135? Sean Donelan (Sep 20)
- Re: Providers removing blocks on port 135? Owen DeLong (Sep 20)
- Re: Providers removing blocks on port 135? Rob Thomas (Sep 20)
- Re: Providers removing blocks on port 135? Owen DeLong (Sep 20)
- Re: Providers removing blocks on port 135? Ray Bellis (Sep 20)
- Re: Providers removing blocks on port 135? David B Harris (Sep 20)
- Re: Providers removing blocks on port 135? Ray Bellis (Sep 20)
- Re: Providers removing blocks on port 135? Niels Bakker (Sep 20)
- Re: Providers removing blocks on port 135? Richard Cox (Sep 20)
- Re: Providers removing blocks on port 135? Margie (Sep 20)
- Re: Providers removing blocks on port 135? Andy Walden (Sep 20)
- Re: Providers removing blocks on port 135? Margie (Sep 20)
- Re: Providers removing blocks on port 135? Jack Bates (Sep 22)
- Re: Providers removing blocks on port 135? Sean Donelan (Sep 20)
- Re: Providers removing blocks on port 135? Justin Shore (Sep 20)
- Any actual data to back up blocking Netbios ports? Sean Donelan (Sep 20)