Securing home computers (Was: Re: [Dshield] Re:[Full-Disclosure]Port Blocking)

Rick Leske rick at jaray.net
Sat Jun 28 15:49:57 GMT 2003


Oh now this is good.. why you guru's are at it.. why not just give all home
users full access to the config files of the core routers?  That way they
can still further enhance there home education, ensure that all the ports
are open to there end point, setup DNS records, throttle the ISP's bandwidth
during peek usage times, etc.

Sounds like an Al Gore mentality.. Do you truly believe that home users
would have the knowledge skills or abilities to setup, configure, and
maintain various types of routers, dslams, etc?  Do you have any idea what
the average education level of the population is, within the USA anyway?
Last I knew it was about 6th grade.

~Rick

----- Original Message ----- 
From: "Mark Tombaugh" <mtombaugh at alliedcc.com>
To: "General DShield Discussion List" <list at dshield.org>
Sent: Saturday, June 28, 2003 10:12 AM
Subject: Re: Securing home computers (Was: Re: [Dshield]
Re:[Full-Disclosure]Port Blocking)


> On Friday 27 June 2003 11:58 pm, Doug White wrote:
> > blanket blocking of arbitrary ports, were it in general use, would not
only
> > limit the "good" users from using the full potential of their
connection,
> > but would also take away the incentives for the less educated to
properly
> > secure their own systems, thinking that "someone else" would take care
of
> > any problems.
>
> Very well put, I couldn't agree more.
>
> > Arbitrary port blocking is not the answer when done at the
> > provider level.
>
> So true. Plus, I'm not sure how effective it would be. Most of the hits I
get
> at home come from rr.com peers (<3% are from their security probes):
>
> #: #blocks: %blocks: kbytes:       last time: organization
> --: -------: -------: ------: ---------------: ------------
>  1:     143:  15.77%:   7.97: Jun/28/03 03:33: rr.com
>  2:      56:   6.17%:  32.21: Jun/28/03 02:36: 210.5
>  3:      23:   2.54%:   1.51: Jun/28/03 00:37: hinet.net
>  4:      23:   2.54%:   1.41: Jun/27/03 21:45: attbi.com
>  5:      18:   1.98%:   0.84: Jun/28/03 03:20: bbtec.net
>  6:      15:   1.65%:   2.03: Jun/27/03 22:33: comcast.net
>  7:      12:   1.32%:   0.91: Jun/28/03 03:26: prodigy.net.mx
>  8:      12:   1.32%:   0.56: Jun/27/03 20:04: rogers.com
>
> What if all broadband subscribers were simply issued routers instead of
> modems/bridges and were allowed to config them?
>
> _______________________________________________
> list mailing list
> list at dshield.org
> To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list
> ___________________________________________________________________
> Virus Scanned and Filtered by http://www.FamHost.com E-Mail System.
>
>

___________________________________________________________________
Virus Scanned and Filtered by http://www.FamHost.com E-Mail System.




More information about the list mailing list