Marcel Stutz wrote: > > Hi to all, good weekend Question, > > Why Access Carriers and also Transit Carriers not block all the RPC Ports on ther > Access Routers ?
Transit Carriers MUST NEVER filter anything in this way!!! Otherwise the Internet ceases to exist. There is no agreement on what to filter. Some will filter only this, others only that and so on... > If you close this then a lot of Attacks and Wurms and Viruses have no Change anymore > ? Good idea. Why don't we cancel all flights to/from Asia and we will never have the flu again in Europe! The kind of knee-jerk action you propose is usually creating more problems than it solves. > Everybody know that windows is a realy open hole and the most people dont look about > Security at home. > The biggest Problem are User the use a ADSL Bridge and Terminate PPPoE on ther > Windows System > sutch T-Online/AOL/Bluewin and all Zyxel 630 Users. This user are the bigest Problem. The fix is Microsoft shipping more secure systems. Why do we have to clean up behind Microsoft? Can't they do it themselfes with 50$bn at the bank? > User ther have a ADSL Router or ADSL Modem with NAT are not a such Problem to access > the Windows Security but all other User the have the PPPoE Stream directly on the > System, most Firewall including XP Firewall dont give any Security. > > I hope that now the Carriers and Access Provider will Close ASAP the RPC Port > from/to the Customer on ther Access Routers, ther is now need to open this Port, if > some wehre need Access to his PC at home he can use a VPN and then the RPC will be > tunneld. > If you want to filter anything, then the only place where it can be done (without breaking the Internet) is at the edge. Put a filter on your own customers links and connections but leave the others alone. BTW: If you are filtering MS RPC why don't you filter P2P too? And more and more and more...? -- Andre ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
