North American Network Operators Group
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Schneier: ISPs should bear security burden

  • From: Suresh Ramasubramanian
  • Date: Wed Apr 27 06:17:09 2005
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=uSr/XMmLIfGkuHhuSpgqs41fCRBu10MPQMQFnvFpVEgkZfAWAxRBocqGoxvNFIMB9xS3JN4Es8eFE9h9vnSougQPhYdbytJOAlkK5gIug1sUDxcQNIg/WFn5rFy6SRQ0nYLZjTNQmdp0/cvnPApmY1eMPL5/obXhW7ZuW8mKd8E=
On 4/27/05, Stephen J. Wilcox <[email protected]> wrote:
> 
> i do think we have an obligation to try to keep the net clean to a certain
> degree, think anti-ddos wg's etc but providing full security for all users is
> unrealistic. there seems to be some moves to offering partial security and this
> is probably a good thing eg blocking common ms ports will likely be effective.
> 

As complete security as possible, to your end users.

That doesnt extend to applying filters to circuits you provision for
your customers (managed T1 type stuff maybe, but definitely, more
useful in the case of end user stuff like at the edge of broadband /
dialup pools)

-- 
Suresh Ramasubramanian ([email protected])