Blocking port udp/tcp 1433/1434

<evil grin>
if you are sure there are no more infected machines out there...
</evil grin>

best regards,

marlon borba, cissp

Joe Maimon <> 11/5/2005 12:51:15 >>>

Is there still justification for denying transit for ms-sql slammer ports?



There will always be infected machines out there. The question is, are
there infectable machines on your network, and will your network contain
them or melt down if you allow them to get infected?

sql slammer must have been a huge money maker for cisco and other switch
vendors (any that support per-port rate-limiting or policing) as networks
scrambled to upgrade infrastructure to contain the next similar outbreak
rather than melt under the load.