On Wed, May 25, 2005 at 11:54:30PM -0400, David F. Skoll wrote: > ISPs should do the following: > > - Block outbound port 25 connections except to their own mail servers.
Yes. > - Insist on SMTP AUTH for outbound mail. Perhaps then even block outbound > port 25 completely and force port 587. Yes. > - Monitor traffic from customer equipment to detect the telltale signs of > virus infection or spamming. This is alot easier said then done at scale. (But not impossible, just quite hard and expensive, especially for the big little ISP.) > That's all. Blocking ALL servers is too draconian. What about blocking the ports that are common vectors like NetBIOS, etc.? -Kelsey _______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list [email protected] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
