[unisog] Lifting backbone port 1434/udp blocks
romig at net.ohio-state.edu
Fri Jan 31 21:09:24 GMT 2003
On Wed, Jan 29, 2003 at 01:58:15PM +1300, Russell Fulton wrote:
> It would help a lot if vendor advisories included information about
> which firewall ports to block to mitigate the vulnerability. And before
> you ask -- no I don't think that blocking ports is the best way to
> mitigate vulnerabilities -- fixing them is, but is it a useful
> additional line of defense.
It would also be useful for things like scanning network traffic logs
for signs of activity (Netflow, Argus, firewall logs).
If/when they include port numbers, I hope they indicate consistently
whether they are TCP or UDP.
More information about the unisog