On Thu, May 26, 2005 at 09:13:57AM -0400, David F. Skoll wrote: > >>That's all. Blocking ALL servers is too draconian. > >What about blocking the ports that are common vectors like NetBIOS, etc.? > > I would block common vector ports by default, but open them up if > (1) the customer pays for a static IP address and (2) the customer > requests them to be open.
Hey - that's exactly what we do for DSL. Users can select between 4 settings, no filters, smtp blocking, 'common ports', all inbound (non established) blocked. -- Kelsey Cummings - [EMAIL PROTECTED] sonic.net, inc. System Architect 2260 Apollo Way 707.522.1000 (Voice) Santa Rosa, CA 95407 707.547.2199 (Fax) http://www.sonic.net/ Fingerprint = D5F9 667F 5D32 7347 0B79 8DB7 2B42 86B6 4E2C 3896 _______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list [email protected] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
