[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] FTP Scans

Subject: Re: [cobalt-security] FTP Scans
From: Charlie Clemmer <cclemmer@xxxxxxxxxxxxxxxxxx>
Date: Sat, 17 Nov 2001 15:42:05 -0600
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

If there's no legitimate reason for uses in these domains to beaccessing FTP on your RAQs, why not just create an IPChains rule toblock FTP requests from these address blocks? That way, valid usersfrom these ISPs can still email and pull http content from your box,without having other security concerns open.

Then I would suggest you contact them and demand they do somethingabout their security. Most of my site traffic comes from the US, butmost of the hacking attempts come from Germany, France and China.While I have had some problems for US ISPs, they are usuallyresponsive and the problem is resolved. It is not the same witht-dialin.net or wanadoo.fr. So if blocking access to the entirecountry is what it takes to reduce the potential threat, then I amafraid that is what must be done.

References:
- Re: [cobalt-security] FTP Scans
  - From: Ed Morgan

Prev by Date: [cobalt-security] RAQ2: how to enable pop3s/imaps
Next by Date: Re: [cobalt-security] FTP Scans
Previous by thread: Re: [cobalt-security] FTP Scans
Next by thread: Re: [cobalt-security] FTP Scans

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index