Re: Probes on Port 135 and 445 continue

From: Leythos (void_at_nowhere.org)
Date: 10/16/04 

Date: Sat, 16 Oct 2004 04:13:45 GMT

In article <slrncn0vjt.k70.ibuprofin@atlantis.phx.az.us>,
ibuprofin@painkiller.example.tld says...
> In article <MPG.1bd993f5e1256ba4989869@news-server.columbus.rr.com>,
> Leythos wrote:
> >In article <slrncmubrp.f7v.ibuprofin@atlantis.phx.az.us>,
> >ibuprofin@painkiller.example.tld says...
> >> In article <MPG.1bd78090e19d9f6798985b@news-server.columbus.rr.com>,
> >> Leythos wrote:
> >>> the acceptable use policy states that it's against the
> >>> house rules to utilize P2P software on the network.
> >>
> >> Tell me, can you see Road Runner implementing that AUP any time soon?
> >
> >Nope, but I didn't suggest that they implement an AUP like that.
>
> The sorority, or RR? If the sorority, I'm curious how someone managed
> to educate them into such an enlightened position - and no, I'm rally
> being serious on this.

The Sorority has an AUP that I designed and passed through our legal
department, it's the same type of AUP that we use for commercial /
corporate accounts when they don't have one of their own.

Since there is no benefit to the Sorority to allowing external users to
access services inside the house, such as P2P systems, there is no
reason to permit it. The house has a slow DSL connection, in order to
provide quality access to the largest number of users, all forms of
"servers" are prohibited. Since the network is monitored 24/7, it could
be construed that the house would know of P2P activity and could be sued
by the RIAA should one of the ladies start offering pirated material to
the public.

The blocking of the ports, 135 through 139, 445, 1433, 1434 and 2500 was
presented to the board, checked by a senior Bank IT manager against
their firewall design (since a bank member is on their board), and
approved without concern.

As it is, the entire house generated about 8MB in logs per 24 hour
period. For 40 users of the network, this is considered very small. Most
all activity is AIM and Web related.

The monitoring also lets us detect a virus outbreak as soon as it
happens - which is how we got involved with them in the first place.
Since implementing this control/design they've not experienced any
problems. I would suggest, that since this one and 6 others that are
also setup this way are not having "Use" problems, that it would also
work for the majority of residential users. Again, anyone requesting a
non-natted IP could get one just by asking.

{snip} I snipped the rest since we were on the same page. 

-- 
-- 
spamfree999@rrohio.com
(Remove 999 to reply to me)