Re: [fw-wiz] outbound traffic security risk
From: Mitchell Rowton (mrowton_at_bdo.com)
Date: 03/23/04
- Previous message: Javier Sanchez Llera: "RE: [fw-wiz] (no subject)"
- Maybe in reply to: Hilal Hussein: "[fw-wiz] outbound traffic security risk"
- Next in thread: Devdas Bhagat: "Re: [fw-wiz] outbound traffic security risk"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <devdas@dvb.homelinux.org>, <firewall-wizards@honor.icsalabs.com> Date: Tue, 23 Mar 2004 11:25:35 -0500
<snip>
Ahem! ISPs are /not/ corporate providers. They should NOT be blocking
stuff (currently, NetBIOS and a bunch of MS ports exempted, and port
25
outbound, but thats a different beast.)
</snip>
Thats why i gave an example of how an ISP can't block http but should
block msrpc and sql, sounds like we are on the same page but the "Ahem!"
leads me to think you are disagreeing..?
I think some ISP's which are focused toward non-technical users could
(and do) add value to their service by providing basic filtering and
protect users from the above example ports. This should of course be
agreed upon by the customer before filtering. In most cases, most
customers, would want a minimum amount of protection.
You shouldn't think of this as taking away your rights and freedom on
the internet to not be filtered. I chose my ISP because I didn't want
to be filtered, and they don't filter. But I wouldn't agree with a
general statement that ISPs should NOT be blocking stuff. Users should
have the option of having a minimum amount of protection, they should
have the option of choosing an ISP that provides this service. If more
users chose ISP's that provide this service then entire categories of
risks on the internet would be mitigated significantly.
NOTICE:
The contents of this email and any attachments to it may contain privileged and confidential information from BDO Seidman, LLP. This information is only for the viewing or use of the intended recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution or use of, or the taking of any action in reliance upon, the information contained in this e-mail, or any of the attachments to this e-mail, is strictly prohibited and that this e-mail and all of the attachments to this e-mail, if any, must be immediately returned to BDO Seidman, LLP or destroyed and, in either case, this e-mail and all attachments to this e-mail must be immediately deleted from your computer without making any copies thereof. If you have received this e-mail in error, please notify BDO Seidman, LLP by e-mail immediately.
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Javier Sanchez Llera: "RE: [fw-wiz] (no subject)"
- Maybe in reply to: Hilal Hussein: "[fw-wiz] outbound traffic security risk"
- Next in thread: Devdas Bhagat: "Re: [fw-wiz] outbound traffic security risk"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
