[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] article: port 25 blocking

Walter Dnes wrote:

On Thu, Apr 14, 2005 at 11:01:03PM -0500, mathew wrote


Basically, it's security through obscurity. And in this case, the
obscurity will only last until the first port scan. There are only
65535 ports in total; there are plenty of tools out there which will
scan them all in a couple of minutes; adding code to go back to each
open port and check for an SMTP server is a trivial addition.



 Rather than accessing random open ports, the road warriors' machines
should be using ssh-tunneling or VPN or whatever.


In which case there's no need for the "random ports" proposal in the first place.


mathew

_______________________________________________
Asrg mailing list
Asrg at ietf.org
https://www1.ietf.org/mailman/listinfo/asrg