[Dshield] Re: [Full-Disclosure] Port Blocking

Bjorn Stromberg bjorn at thechemistrylab.com
Fri Jun 27 19:39:07 GMT 2003


"hire a sysadmin to secure their connection or become sufficiently trained
to do it themselves"

You say that like it takes some sort of awe-inspiring feat to increase the
baseline security of a system. Running Windows Update a couple times,
disabling NetBIOS over tcp/ip and Windows File and Print Sharing. These
things should be REQUIRED to have your cable or DSL modem set up.

It's up to the ISPs to be more responsive and responsible for the computers
on their network. Reports like those coming from DShield should be acted on.
You shouldn't have to pull teeth to get a misconfigured, infected, trojaned,
spamming machine unplugged and fixed.

This is a case where it will require some actual work to do things the right
way. Let's not take the easy way out and just block ports.

Bjorn Stromberg
Mid-Continent Testing Laboratories, Inc.
http://www.TheChemistryLab.com/




More information about the list mailing list