>> Guess Microsoft must have been watching Todd's email, eh?...;-]
>Anything I can do to help. Now, if we could just get them to cooperate
>with the CERT... 8^)
In what ways does Microsloth not cooperate with CERT?
We, due to budget constraints, don't use an active firewall to insulate
us from the net, we use a passive router (Telebit Netblazer). In simple
terms, we block all incomming traffic on all well known ports (that is,
ports < 1024, and a select few nasties above that).
I am really starting to get worried about the SOCKS port (port 1080).
Since this service is on a port > 1024, we don't block it. And if
anyone "on the inside" has a SOCKS server running, there is nothing
stopping the outside world from accessing the SOCKS server and then
subaccessing many of our internal systems. How did such a powerful
service get allocated a non-well-known port, anyways?