On Mon, 4 Apr 2005, Florian Weimer wrote: > * Stephen J. Wilcox: > > > On Mon, 4 Apr 2005, Gadi Evron wrote: > > > >> Anyone ever considered just closing these ports? People will pay you > >> more and just for your ACL services! You can put all your troubles > > > > you would need to do this on a per customer interface basis ie not > > at an aggregation point but on each ppp interface.. > > Not necessarily. Some Windows malware prefers local address ranges, but not > all. If you quickly disconnect those who caught something, it's a great help > in keeping the number of infected machines down. You could even spin this in a > way that encourages your customers to recommend you to their friends: no > hassle with the filters.
I thought of that but then its only half a filtering effort, how would you package it up 'Telecomplete Broadband **Now with a bit of filtering**' ? Then a bunch of smallprint about how you dont actually provide any additional security? :) Steve
