[unisog] Lifting backbone port 1434/udp blocks

Steve Romig romig at net.ohio-state.edu
Fri Jan 31 21:09:24 GMT 2003


On Wed, Jan 29, 2003 at 01:58:15PM +1300, Russell Fulton wrote:
> It would help a lot if vendor advisories included information about
> which firewall ports to block to mitigate the vulnerability.  And before
> you ask -- no I don't think that blocking ports is the best way to
> mitigate vulnerabilities -- fixing them is, but is it a useful
> additional line of defense. 

It would also be useful for things like scanning network traffic logs
for signs of activity (Netflow, Argus, firewall logs).  

If/when they include port numbers, I hope they indicate consistently
whether they are TCP or UDP.  

--- Steve



More information about the unisog mailing list