 鲜花( 87)  鸡蛋( 1)
|
之前发过一个帖子有关Telus, Shaw 的比较, * M* o" w8 r5 P
家用Telus 已经封锁了不少端口。 也随时不通知下说锁就锁, 非常讨厌。
* m- e3 \) z! w6 e! a5 H+ F
* N7 h! N* u" \- wDoes Telus block any ports? ) e/ F. c* |$ S# t
9 \- b7 |& E1 g2 y$ e- `% YThe only packages with no blocked ports at this time are the Server packages.
" q# {, c. U/ H4 f& x' }1 ?/ c N. Y) R8 c0 H
The Blocked ports currently are:
( y5 \" S/ n4 d3 Z/ V3 s Z4 J! F0 \9 O9 V9 P. `" w/ i- ]3 M
TCP 21 (ftp)3 ^# ^! x% o7 z, g7 J. A+ E; M
Customers running an FTP server will no longer be able to have Internet users connect to their server. Many customers computers are used as FTP servers to store illegal files.3 n# N- ]4 A9 X( p+ t n. A
$ f. f9 \8 X7 G4 \) ]1 y# H; r& TTCP 25 (smtp)
4 _ E& {% x% n: Q M+ u3 C6 ACustomers running a SMTP mail server will no longer be able to receive email requests. Also, Telus users will not be able to connect to non-Telus smtp servers on port 25. Prevent mail servers that operate as an open relay. Open relays are used without a customer?s knowledge to sends millions of pieces of Spam.5 z/ e+ n# ]" T; U2 c
* S6 h0 ^5 G {7 D4 V- |8 DTCP 80 (www)
' Q* g, {/ p. {8 b2 sCustomers running a Web server will no longer be able to have Internet users connect to their server. Common exploit on old Window IIS server and Linux boxes that are not properly patched.* ~( f0 |% U5 y' U5 I: J4 Z x: @4 `
3 ?3 O# {1 W v! tTCP 110 (pop3)8 Z2 m B- J# F7 V8 X
Customers running a POP mail server will no longer be able to have Internet users connect to the server. Prevent mail servers that operate as an open relay. Open relays are used without a customer?s knowledge to sends millions of pieces of Spam.9 J' F0 o# M$ e' s3 k& D" ^& M
# [+ o' l( ?6 ?1 y1 ]TCP 6667 (ircd)
% b2 h% M: M/ u* i7 [ }; l3 w, bCustomers running a IRC server (Internet Relay Chat) will no longer be able to have Internet users connect to the server.4 O9 W- b R; b$ i
4 b0 h1 e# s4 Q' ]1 m9 f! j oTCP/UDP 135-139 (dcom and netbios)
/ ~/ k) o6 D: _4 CThese ports are commonly exploited by worm viruses:
7 |( v$ g" @9 X% |135 Windows RPC9 x1 Z" B$ o1 Z
136 PROFILE Naming System (basically unused)' f W7 j$ [+ R
137-139 Windows NetBios2 b& O2 |2 u# I9 ]1 j
- C$ ~" X) f5 P; c5 `" P. p
TCP/UDP 445 (ms-ds)
& `$ ~$ q& h0 O) ^; VMicrosoft Directory Services - Customers that allow legitimate Internet users access to their computers will loose this ability. This allows hackers to directly connect to a Windows based computer and gain total control over the OS.
7 A E8 ^1 i7 L% ]" t0 V. a0 d: l' M m- d
TCP/UDP 1433-1434 (ms-sql)
% D! K9 w4 u. \$ P7 Q! dMicrosoft SQL server - Customer running an SQL server will no long be able to have Internet user connect to their server. There are several worm viruses that exploit holes in SQL server. |
|