lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20030209202946.GF28967@faveve.uni-stuttgart.de>
From: delta at FaVeVe.Uni-Stuttgart.de (Helmut Springer)
Subject: SQL Slammer - lessons learned

On 09 Feb 2003 at 20:36 +0100, Schmehl, Paul L wrote:
> All this is well and good, but I have a really hard time
> understanding why we need to route insecure networking protocols
> such as NetBIOS, CIFS, NFS or NIS across the Internet.  Just
> closing those ports would do a world of good for the Internet as a
> whole, and who in the world would it hurt?

It is not the part of the phone company to decide what topics can be
discussed in a phone call.  Neither is it the part of ISP to decide
what traffic their customers are able to transmit.


> If the Internet is going to survive in any viable fashion, we have
> to come to our senses when it comes to allowable services.

Internet is the ability to send ip packets from one node to another.


> The uncontrolled access to networking services on home computers
> and poorly secured commercial networks is the root cause behind a
> lot of the problems that exist on the Internet today - worms,
> virus, trojans, etc.  Ports 139 and 445, *at a minimum*, should be
> closed (to the outside) on every network in the world.

At is not your part to decide if my system at home is secure or not.


> Are you really willing to demand your "freedom" in the face of the
> overwhelming odds that leaving those ports open will do more harm
> than good?

Of course.  Otherwise shut down all telephone lines immediately,
there are overwhelming odds planned, organized and conducted over
those.


-- 
MfG/Best regards,                   "A Feature you cannot disable is
helmut springer                      considered a bug"  comp.os.unix

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ