On Thu, May 26, 2005 at 03:05:26PM -0400, James Ebright wrote: > On Thu, 26 May 2005 10:58:52 -0700, Kelsey Cummings wrote > > > You must block port 25 in both directions to prevent 'triangular routing > > attacks' from working. ... > I am not saying we are fool proof, but this attack seems unlikely enough to > succeed that is it would be unreasonable for us inconvenience to our customer > base by blocking port 25, not to mention we would probably detect it as a > potential DOS attack via our IDS fairly quickly anyway simply due to the > latency/traffic it would cause.
'People in the Know' claim that this is in widespread useage already. I am presonally only parroting what I've heard from very reputable sources. -- Kelsey Cummings - [EMAIL PROTECTED] sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 (Voice) Santa Rosa, CA 95407 707.547.2199 (Fax) http://www.sonic.net/ Fingerprint = D5F9 667F 5D32 7347 0B79 8DB7 2B42 86B6 4E2C 3896 _______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list [email protected] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
