Re: solution time for www/smtp hole
broccol@csdsun1a.arlut.utexas.edu (Jonathan Abbey)
Date: Fri, 13 Aug 93 09:50:13 CDT
From: broccol@csdsun1a.arlut.utexas.edu (Jonathan Abbey)
Message-id: <9308131450.AA15737@csdsun1a.arlut.utexas.edu>
To: www-talk@nxoc01.cern.ch
Subject: Re: solution time for www/smtp hole
Status: RO
> Subject: solution time for www/smtp hole
> X-Md4-Signature: c45540ffc30512e63574cd934e87b24b
>
> OK, let's bring this thing to a close.
>
> How about we start disallowing Gopher connections to anything other
> than 70 and 71 (some Gopher servers use the latter), HTTP connections
> to anything other than 80, Z39.50 and 210, and NNTP connections to
> anything other than (whatever the NNTP port is), etc. -- except for
> >1024, which is wide open.
>
> Is that sufficient to make AT&T and MvH happy? Does it cause any
> impact on *current* functionality?
>
> Is it also necessary to prohibit escaping of cr/lf?
>
> Marc
Don't forget about the CSO nameserver at port 105.
Jon