Re: [Full-Disclosure] SQL Slammer - lessons learned

From: Helmut Springer (delta@lug-s.org)
Date: 02/05/03

  • Next message: David LaPorte: "Re: [Full-Disclosure] SQL Slammer - lessons learned" 
    From: Helmut Springer <delta@lug-s.org>
To: full-disclosure@lists.netsys.com
Date: Wed, 5 Feb 2003 17:42:00 +0100

    On 05 Feb 2003 at 16:38 +0100, Paul Schmehl wrote:
    > Can you think of a legitimate reason why ISPs should allow ports
    > 135-139/TCP/UDP to be open to the Internet?

    Them selling IP connectivity. I want an ISP to transport IP
    packets, that's it. An ISP losing packets delivers a bad service in
    this regard.

    Some people might want to purchase limited internet access or an
    online service, that's another story. 

    -- 
MfG/Best regards,                   "A Feature you cannot disable is
helmut springer                      considered a bug"  comp.os.unix
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

    Relevant Pages

    • Re: BBC I Player, never works when you want it!
      ... It's also worth pointing out that the entire Internet is contended - no part of it can handle the theoretical volume of traffic that could be thrown at it by all the surrounding routers. ... Thus the ISP and comms providers have always been stuck with this difficult conundrum: there's a fundamental mismatch between the cost model and the revenue model. ... BT charges per phone call, but there are no per-phone-call costs to BT; the costs are pretty well all in the initial provision of the equipment. ... So it is true to say that it costs nothing to send a packet, or a million packets: the argument that the costs are "fixed" in that respect is true. ...
      (uk.tech.digital-tv)
    • Re: port 80 is open
      ... The firewall drops all packets initiated ... > internet the ISP router does not send the unreachable message. ... and then close the connection as your IP is seen as not connected. ...
      (comp.security.firewalls)
    • Re: Strange netstat output - possible hacking attempt?
      ... > think we can really call that 'port scanning' in any illegitimate sense. ... > on port 80 connections? ... schmuck is sending out 192.168-something packets due to a misconfiguration, ... I've seen this myself when I used to live on an ISP with 2-hour cut-off; ...
      (comp.os.linux.security)
    • Re: Penalising downloaders
      ... to do your monitoring based on what is *in* the packets whizzing round ... Instead copyright holders or their agents will do the monitoring. ... They join P2P groups, try to download copyright material, identify the IP addresses of people offering to share this material, and report the offenders to the ISP for action. ... In any case, government organisations are often their own ISPs, so there will be nobody to disconnect them. ...
      (uk.legal)
    • Re: log entry
      ... Windoze ping.exe use IGMP for ping purpose. ... some packets but your Linux box ipchains rejected this packets ... ISP that route source IP of RFC1918 private network address are ...
      (comp.os.linux.security)