本文发表在 rolia.net 枫下论坛There was a time when wingate would allow attackers to spoof IP of the wingate host to attack ISP's servers, which drove those sys admins crazy!
Also, you are underestimate the security implication of home users. My web server log is full of craps like "GET /default.ida?NNNNN..." and "GET /scripts/root.exe?...". They all came from those naive home users who don't know what's really going on with their god damned Windoz machines. Remember when code-red first occurred, the Internet was almost brought down to its knees when all those IIS machines tried to send several hundred Megs of garbage over the Internet? Some of the ISPs were forced to block TCP/80, others (like Telus adsl) had to interrupt the service for quite a while! Most of those machines are home users with broadband connection!
And it's a situation that is hard to deal with. Unlike corporate environment where you can deal with the problem on corporate level, you just can't knock on each user's door and let them patch up their stupid machines. So some of the ISPs just shutdown the service for the user and wait for them to call.
And you are saying "有些安全问题个人用户使用没有什么,一般没人会攻击私人电脑,除非和你有仇或者小毛头出来练手". It's not that simple.更多精彩文章及讨论,请光临枫下论坛 rolia.net
Also, you are underestimate the security implication of home users. My web server log is full of craps like "GET /default.ida?NNNNN..." and "GET /scripts/root.exe?...". They all came from those naive home users who don't know what's really going on with their god damned Windoz machines. Remember when code-red first occurred, the Internet was almost brought down to its knees when all those IIS machines tried to send several hundred Megs of garbage over the Internet? Some of the ISPs were forced to block TCP/80, others (like Telus adsl) had to interrupt the service for quite a while! Most of those machines are home users with broadband connection!
And it's a situation that is hard to deal with. Unlike corporate environment where you can deal with the problem on corporate level, you just can't knock on each user's door and let them patch up their stupid machines. So some of the ISPs just shutdown the service for the user and wait for them to call.
And you are saying "有些安全问题个人用户使用没有什么,一般没人会攻击私人电脑,除非和你有仇或者小毛头出来练手". It's not that simple.更多精彩文章及讨论,请光临枫下论坛 rolia.net