In message <CAD6AjGRqy4yjHpWnY+qEiyuJ8egvNtH=5stj=4kndyxbivt...@mail.gmail.com> Cameron Byrne writes: > I am in the camp the host should be strong and smart and networks > should be simple and fast. > > Cb
Same here but we can't get rid of all the windows systems out there. So service providers are compelled to put firewalls in front of consumer customers (and even most small business) and have them enabled by default. To not do so would result in the service provider having a network of malicious bots (as opposed to a network containing a subset of sites running malware that the service provider couldn't prevent). Back in the early 1990s I argued that we should not let windows systems on the Internet. That was back when your network (college campuses, corporations, etc) could be shut down by a provider if attacks were coming out of it and you did nothing to completely eradicate it. An example of this was Mitnik breaking into a university in Houston and Sesquinet shutting off their Internet for four days due to a computer science department response that security was a hard problem and from a practical standpoint there was nothing they could do about it. Back then, if you couldn't make it secure, it didn't belong on the Internet. I do see your point and agree with you. From a technical perspective, firewalls are an inadequate bandaid over a set of OS and application security problems and the right thing to do is fix the root casue. Curtis _______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
