 鲜花( 87)  鸡蛋( 1)
|
之前发过一个帖子有关Telus, Shaw 的比较, 0 W6 G! ?9 H9 Z% R6 c
家用Telus 已经封锁了不少端口。 也随时不通知下说锁就锁, 非常讨厌。, A- s* }4 N, d) o, X
, p; j9 O1 d' R& t) qDoes Telus block any ports?
* O0 z7 i4 J+ E0 [( C
0 N& u6 A4 \1 Q0 X& yThe only packages with no blocked ports at this time are the Server packages. 3 c, A C, q' Y' @! `6 P4 t; v
U, ` ?& {+ e, d' B! yThe Blocked ports currently are:
6 h% F) @5 |& g( J7 S6 `3 K" W; B; }. o# d6 e& @, h# K
TCP 21 (ftp)
) S- }0 I+ L0 o3 ?! iCustomers running an FTP server will no longer be able to have Internet users connect to their server. Many customers computers are used as FTP servers to store illegal files.
* N- ~/ ~' _, ^6 U6 m$ C3 ~! e; h3 H. h
TCP 25 (smtp)
6 [' s7 d% A! B& t" uCustomers running a SMTP mail server will no longer be able to receive email requests. Also, Telus users will not be able to connect to non-Telus smtp servers on port 25. Prevent mail servers that operate as an open relay. Open relays are used without a customer?s knowledge to sends millions of pieces of Spam., c8 Y% o$ m( i1 n z0 N
8 i; M7 }4 [) R" M* c+ @( ?' \/ B% zTCP 80 (www)/ z$ c1 b' o* ?
Customers running a Web server will no longer be able to have Internet users connect to their server. Common exploit on old Window IIS server and Linux boxes that are not properly patched.
! h" U5 K7 Q# b, @6 c9 i& {9 |6 o5 x
TCP 110 (pop3)
~+ F- {9 W' \: RCustomers running a POP mail server will no longer be able to have Internet users connect to the server. Prevent mail servers that operate as an open relay. Open relays are used without a customer?s knowledge to sends millions of pieces of Spam.; n$ R# [- }; T1 X" G
/ q) y9 U( z0 y7 l" H4 O0 ^
TCP 6667 (ircd)+ G4 K1 q2 o0 R: j
Customers running a IRC server (Internet Relay Chat) will no longer be able to have Internet users connect to the server.
" E( G- k/ J9 J2 H
) u* v: B8 b; vTCP/UDP 135-139 (dcom and netbios)
4 L1 |; ?0 z! V/ D3 fThese ports are commonly exploited by worm viruses:
- \8 }" C, I, Z. W" y! _1 r1 k( r135 Windows RPC
! f/ X+ j2 z' V4 W/ x136 PROFILE Naming System (basically unused)
- X" _' }5 ]. B: I( R1 H6 d137-139 Windows NetBios1 t$ m" L) [% r, g
( V9 G- w& ?# c5 R4 T0 ]/ s! B( qTCP/UDP 445 (ms-ds)2 V+ z$ H* e$ D" q+ h, n
Microsoft Directory Services - Customers that allow legitimate Internet users access to their computers will loose this ability. This allows hackers to directly connect to a Windows based computer and gain total control over the OS.; V$ y2 U* K; [8 i' @
& k/ E$ v2 S4 e( `: r* f) P# K9 ?
TCP/UDP 1433-1434 (ms-sql)
' D4 B+ h a( ~. }4 J- M# ~. pMicrosoft SQL server - Customer running an SQL server will no long be able to have Internet user connect to their server. There are several worm viruses that exploit holes in SQL server. |
|