Re: solution time for www/smtp hole

broccol@csdsun1a.arlut.utexas.edu (Jonathan Abbey)
Date: Fri, 13 Aug 93 09:50:13 CDT
From: broccol@csdsun1a.arlut.utexas.edu (Jonathan Abbey)
Message-id: <9308131450.AA15737@csdsun1a.arlut.utexas.edu>
To: www-talk@nxoc01.cern.ch
Subject: Re:  solution time for www/smtp hole
Status: RO

> Subject: solution time for www/smtp hole
> X-Md4-Signature: c45540ffc30512e63574cd934e87b24b
> 
> OK, let's bring this thing to a close.
> 
> How about we start disallowing Gopher connections to anything other
> than 70 and 71 (some Gopher servers use the latter), HTTP connections
> to anything other than 80, Z39.50 and 210, and NNTP connections to
> anything other than (whatever the NNTP port is), etc. -- except for
> >1024, which is wide open.
> 
> Is that sufficient to make AT&T and MvH happy?  Does it cause any
> impact on *current* functionality?
> 
> Is it also necessary to prohibit escaping of cr/lf?
> 
> Marc

Don't forget about the CSO nameserver at port 105.

Jon