[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I-D.ietf-v6ops-cpe-simple-security-09

To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Subject: Re: I-D.ietf-v6ops-cpe-simple-security-09
From: Gert Doering <gert@space.net>
Date: Sun, 21 Mar 2010 14:38:31 +0100
Cc: Mark Townsley <townsley@cisco.com>, james woodyatt <jhw@apple.com>, IPv6 Operations <v6ops@ops.ietf.org>
In-reply-to: <4BA56626.20606@gmail.com>
References: <D6F5ACD2-EB43-477E-9F48-AC3EDB3F7EB4@apple.com> <4BA3BBCF.2090903@cisco.com> <4BA3D1B3.4010501@gmail.com> <4BA3DAAA.10000@cisco.com> <4BA40DD1.7080306@gmail.com> <6C168711-6A34-4487-9911-92766513183C@apple.com> <4BA522E8.7050504@cisco.com> <4BA56626.20606@gmail.com>
User-agent: Mutt/1.5.20 (2009-06-14)

Hi,

On Sun, Mar 21, 2010 at 01:19:50PM +1300, Brian E Carpenter wrote:
> Indeed. But ISPs that supply CPE to their customers are going to
> assume that their customers are running unpatched insecure operating
> systems at high risk of catching malware. So I think they are just as
> likely as enterprise IT departments to favour default deny approaches.

We're not.

We provide *Internet* services.  Not "walled garden" services.

If the customer wants firewall protection, we're happy to sell it to them,
but the default package they get is "Internet".  Packets transported from
A to B and vice versa, and we're not maing their packets unhappy unless they
tell us so.

Gert Doering
        -- NetMaster
-- 
Total number of prefixes smaller than registry allocations:  150584

SpaceNet AG                        Vorstand: Sebastian v. Bomhard
Joseph-Dollinger-Bogen 14          Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen                   HRB: 136055 (AG Muenchen)
Tel: +49 (89) 32356-444            USt-IdNr.: DE813185279

Follow-Ups:
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>

References:
- I-D.ietf-v6ops-cpe-simple-security-09
  - From: james woodyatt <jhw@apple.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Mark Townsley <townsley@cisco.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Mark Townsley <townsley@cisco.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: james woodyatt <jhw@apple.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Mark Townsley <townsley@cisco.com>
- Re: I-D.ietf-v6ops-cpe-simple-security-09
  - From: Brian E Carpenter <brian.e.carpenter@gmail.com>

Prev by Date: Re: I-D.ietf-v6ops-cpe-simple-security-09
Next by Date: RE: Proposed agenda for IPv6 Operations - IETF 77
Previous by thread: Re: I-D.ietf-v6ops-cpe-simple-security-09
Next by thread: Re: I-D.ietf-v6ops-cpe-simple-security-09
Index(es):
- Date
- Thread