That's why I made sure our entire LAN had the rpc vuln patches. Even if it did breach the firewall by some other access point it would be unable to spread. Gotta have that onion ;)
-----Original Message----- From: Jeffrey A.K. Dick [mailto:[EMAIL PROTECTED] Sent: Thursday, August 14, 2003 12:09 PM To: [EMAIL PROTECTED] Subject: Re: [Full-Disclosure] "MS Blast" Win2000 Patch Download Brad Bemis wrote: "Personally I am getting tired of people making these kinds of comments. ... While it may be true that blocking port 135 at the firewall would work in an ideal environment" Amen ... and ...forget about "ideal environment" ... it won't necessarily be effective in *any* environment except the "network-comprised-of-a-single-computer-that-nobody-uses" (tm). These people clearly haven't heard of notebooks and the concept of people using them outside the network (say, at home). These are the same folks who patted themselves on the back all Monday night for protecting their networks ... until people started plugging their notebooks into the network on Tuesday morning ... oops ... Cheers, JAKD _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html ************************************************************ Omaha World-Herald Company computer systems are for business use only. This e-mail was scanned by MailSweeper ************************************************************ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
