 鲜花( 87)  鸡蛋( 1)
|
之前发过一个帖子有关Telus, Shaw 的比较, / ^% W/ U: B0 z& D
家用Telus 已经封锁了不少端口。 也随时不通知下说锁就锁, 非常讨厌。6 s8 G0 G% @9 [( i g, W
1 h- k& _' r! NDoes Telus block any ports?
: A) C0 K3 H, w8 @) |/ \
2 V) W& P! K% \; ?. ]9 n+ T6 k2 A) I" zThe only packages with no blocked ports at this time are the Server packages.
& E. ^& k$ |" O3 I1 J* X" v) }
. ~! X# `0 S% w3 ?! t0 `; l& PThe Blocked ports currently are:
' j, {5 I, r3 g- w9 N1 H& S5 Y* P4 D6 T3 f7 N# x! k) T9 K
TCP 21 (ftp)8 s9 l6 o7 ]5 f+ n( e
Customers running an FTP server will no longer be able to have Internet users connect to their server. Many customers computers are used as FTP servers to store illegal files.
* X9 @- C2 W5 F9 m7 o7 B, _
: K+ r+ v% [* R; ZTCP 25 (smtp)
g8 c$ `, \2 K. K0 i/ t- b7 oCustomers running a SMTP mail server will no longer be able to receive email requests. Also, Telus users will not be able to connect to non-Telus smtp servers on port 25. Prevent mail servers that operate as an open relay. Open relays are used without a customer?s knowledge to sends millions of pieces of Spam.
8 I+ R1 S' q7 ?$ m3 X
- z9 q( v, a% _TCP 80 (www)
8 f& n0 _; s# {8 N+ }Customers running a Web server will no longer be able to have Internet users connect to their server. Common exploit on old Window IIS server and Linux boxes that are not properly patched.
9 \2 g! D3 M6 h$ u& T9 V& C; a% k# q$ Y
- o( f' B& y6 P( N9 oTCP 110 (pop3), E8 v9 N) {2 ? q
Customers running a POP mail server will no longer be able to have Internet users connect to the server. Prevent mail servers that operate as an open relay. Open relays are used without a customer?s knowledge to sends millions of pieces of Spam.
! N8 {; ^4 r" G1 Y: j n; N
" _9 ~# x; \ v9 Z9 QTCP 6667 (ircd)
( M% l$ f& X) `0 E( c; F5 C3 N% `Customers running a IRC server (Internet Relay Chat) will no longer be able to have Internet users connect to the server.( g) {& F+ m( n
! R- x2 R! k# f3 b) m
TCP/UDP 135-139 (dcom and netbios)$ Z( Q( | P' }
These ports are commonly exploited by worm viruses:4 ^$ c- p1 @; Z0 A0 G$ k3 h* P- \
135 Windows RPC9 r' y! A& _8 j2 ^0 y
136 PROFILE Naming System (basically unused)
9 k% T% F" Y& B* w137-139 Windows NetBios
5 F3 g2 S$ d0 W0 d5 {/ E% p
2 \- @( u; P DTCP/UDP 445 (ms-ds)0 i+ i0 e# ?: W
Microsoft Directory Services - Customers that allow legitimate Internet users access to their computers will loose this ability. This allows hackers to directly connect to a Windows based computer and gain total control over the OS.
' b" N, N7 F( ^7 ?( g, f; h; g. r1 G$ Z) b
TCP/UDP 1433-1434 (ms-sql)
3 v* z& v" y5 J4 V, a2 q& o3 mMicrosoft SQL server - Customer running an SQL server will no long be able to have Internet user connect to their server. There are several worm viruses that exploit holes in SQL server. |
|