Securing home computers (Was: Re: [Dshield] Re: [Full-Disclosure]Port Blocking)

Mark Tombaugh mtombaugh at alliedcc.com
Sat Jun 28 15:12:28 GMT 2003


On Friday 27 June 2003 11:58 pm, Doug White wrote:
> blanket blocking of arbitrary ports, were it in general use, would not only
> limit the "good" users from using the full potential of their connection,
> but would also take away the incentives for the less educated to properly
> secure their own systems, thinking that "someone else" would take care of
> any problems. 

Very well put, I couldn't agree more.

> Arbitrary port blocking is not the answer when done at the
> provider level.

So true. Plus, I'm not sure how effective it would be. Most of the hits I get 
at home come from rr.com peers (<3% are from their security probes):

#: #blocks: %blocks: kbytes:       last time: organization
--: -------: -------: ------: ---------------: ------------
 1:     143:  15.77%:   7.97: Jun/28/03 03:33: rr.com
 2:      56:   6.17%:  32.21: Jun/28/03 02:36: 210.5
 3:      23:   2.54%:   1.51: Jun/28/03 00:37: hinet.net
 4:      23:   2.54%:   1.41: Jun/27/03 21:45: attbi.com
 5:      18:   1.98%:   0.84: Jun/28/03 03:20: bbtec.net
 6:      15:   1.65%:   2.03: Jun/27/03 22:33: comcast.net
 7:      12:   1.32%:   0.91: Jun/28/03 03:26: prodigy.net.mx
 8:      12:   1.32%:   0.56: Jun/27/03 20:04: rogers.com

What if all broadband subscribers were simply issued routers instead of 
modems/bridges and were allowed to config them? 




More information about the list mailing list