North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: Port blocking last resort in fight against virus
- From: Petri Helenius
- Date: Wed Aug 13 05:35:40 2003
> In your world DoS traffic would be free to roam the networks as it pleased
> without being throttled sensibly at ingress?
Throttling is a different from blocking. Sensible traffic management does not
break applications nor network transparency. You are free to choose when to
forward each packet.
> Or the dumb [wannabee] IT guy runs some telnet/ftp/filesharing service without
> passwords and its ok for the whole world to access the private system coz its
> his fault?
This means your application security infrastructure already failed if some filesharing
application is running on a machine which also has access to data in the internal