Re: solution time for www/smtp hole

Jonathan Abbey (broccol@csdsun1a.arlut.utexas.edu)
Fri, 13 Aug 93 09:50:13 CDT


> Subject: solution time for www/smtp hole
> X-Md4-Signature: c45540ffc30512e63574cd934e87b24b
>
> OK, let's bring this thing to a close.
>
> How about we start disallowing Gopher connections to anything other
> than 70 and 71 (some Gopher servers use the latter), HTTP connections
> to anything other than 80, Z39.50 and 210, and NNTP connections to
> anything other than (whatever the NNTP port is), etc. -- except for
> >1024, which is wide open.
>
> Is that sufficient to make AT&T and MvH happy? Does it cause any
> impact on *current* functionality?
>
> Is it also necessary to prohibit escaping of cr/lf?
>
> Marc

Don't forget about the CSO nameserver at port 105.

Jon