-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 You can get as technical as you want to, but when your firewall recieves data on TCP port 25, who ever is sending you mail has used their network all the way to your network. When you recieve mail it comes in on 25, when your MTA sends out it's not running on outbound 25, it runs above port 1024 and is destined to an IP connecting on port 25. It the whole source and destination port thing, like with ftp. And they are stopping DATA traffic on port 25. Also the internet is NOT about free speech and liberty. It's about business. The government now days has so little to do with data getting from me to you. It's telco's and data providers that you are dealing with. Your points are somewhat valid, but require major hardware. Take your corporate mail server and have sendmail or whatever MTA drop all mail that has a .pif attachment. And watch a PIII 1 Ghz box with 20-30 users kill itself with a simple virus replication to your network. Also they do have content filtering for an addition charge. And I have plenty of uses for an ssh connection that have nothig to do with running a full lown server. I ssh into my box all the time to do traceroutes and pings to triangulate internet related problems. And that's the only open port on my box.
Mike On Wed September 10 2003 2:30 pm, 02fun-u2 wrote: > k I'm on cable one but not running a mail server but lets get technical for > a sec, my firewall is the only cpe that is on there network. that firewall > hooks up to MY 24 ports of 10/100 fun. So say i setup a nice qmail or > postfix daemon on my home lan. now lets face it I'm NOT running a server on > there network, it's on mine. if i port forward my port 25 the data is the > only thing going from there network to mine. the Internet is about freedom > of transition (free as speech and liberty) of thoughts and ideas within the > bounds of law. those transitions take the form of data. by stooping the > transition of an IEEE standard they are really just censoring there > customer and going agents the general Internet governing body. > > so lets really get down to the "stuff" > 1. if cable one is so concerned over spam and other bad things why don't > they implement something like spam assign on there mail connection. > > 2. why aren't the scanning all the email going through there gateway for > virus. 3.why don't they have some sort of proxy that if you want to use, > scans web content for virus, bad cgi, etc. > > just a thought > are you running a firewall that can be administered from off site? With > http or ssh. Well just to let you know you are running a server, you must > now disconnect from cable one. > > Also > the people that want to get around port 25 blocking will. > why not block incoming port 22? no one has a use for ssh unless they are > running a server right? Or maybe there some hacker who owns some one else's > box and using it for DDos > > ps > Jeromey how is lisa's box doing :) > inside joke! > > _______________________________________________ > Join Excite! - http://www.excite.com > The most personalized portal on the Web! -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE/X5ZhmUFtrUUciv4RAkcuAJ9y2hS8+UIG40vNbD3fGXusQKFacwCgjicN cEzs0qH0NYzW1nB7GLXORSs= =nlGs -----END PGP SIGNATURE-----
