so the user should know of pc-security, but...
we do have a av on our smtp. so many user say "aahhh.. then i don't need any av-software"... explain, explain...
i will say: the securest way is to unplug the powercord of the pc. there will never be a "unholed" system.
but you're right. maybe we should discuss to close some nice win-ports. do have other systems the same "problem" ie mac, beOs....? which ports sould we also close except the 135-139 445? what is then about open internet?
rog
Pascal Gloor schrieb:
Why Access Carriers and also Transit Carriers not block all the RPC Ports
on ther Access Routers ?
because some of us (swiss ISPs) think the user has the right to have full internet access (ie not blocking anything).
Personally I think the average user is not able to secure his Windows and will be infected in ANY case. See, the other day I have reinstalled a PC, Windows XP. I had the bad idea to have it pluged to the internet without being behind a nat or so. Guess, once the box was installed and all the patches applied (~120Mbytes), my PC was already infected by 3 viruses and 2 trojans.
I think we should filter some well known " unsecure ports", as 135-139 and 445 and so we do. No user complained so far.
If a user really wants to do "whatever microsoft sharing" over the internet, we will tell him to use pptp or anything else he could use to have a 'minimum' of security.
Pascal
---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
