Re: Blocking port 53

• From: Randy Bush
• Date: Sun Mar 27 21:00:33 2005

>> problem is many walled garden providers, e.g. t-mo, block 53.
> The world could be a better place if there were fewer people who
> stole service, or if the technologists could come up with more
> secure systems.

ok, tell me.  how does allowing my laptop in the united red rug
to access the global dns threaten the t-mo hotspot, united, ...?

oh, and then there was the appended glorious one.

randy

---

From: Randy Bush <[email protected]>
Date: Mon, 31 Jan 2005 18:47:29 -0800
To: global services cust support <[email protected]>   
Subject: wireless in narita red carpet

[ please pass to whoever does tech support for the internet
  service you provide in the narita red carpet lounge ]

i came through narita on monday 2005.01.31, changing from
bangkok to get to seatac.  i am an internet engineer since
the arpanet, and heavily into network security.

i had a very scary and useless experience in the red carpet
at narita.  you provide free wireless, but ports other than
25, 80, 110, 443, ... are blocked.  so no ssh or other vpns.
i.e. YOU FORCE WIRELESS USERS TO BE INSECURE.  so, if i was
so inclined, i could sit there and tap everyone's email etc.
this is very un-good.

randy

• Follow-Ups:
  • Re: Blocking port 53 John Levine

• References:
  • DNS cache poisoning attacks -- are they real? Florian Weimer
  • Re: DNS cache poisoning attacks -- are they real? Sean Donelan
  • Re: DNS cache poisoning attacks -- are they real? Suresh Ramasubramanian
  • Re: DNS cache poisoning attacks -- are they real? Randy Bush
  • Blocking port 53 Sean Donelan

• Prev by Date: Blocking port 53
• Next by Date: Re: Blocking port 53
• Date Index
• Thread Index
• Author Index
• Historical