Referencing: Unprotected PCs can be hijacked in minutes
I've said this before: it is unconsciable that DSL and Cable providers allow home connections without firewalls. The referenced article details the results of this foolishness.
The firewall should be an integral part of the equipment they provide. This is the case with some providers: my DSL connection with Taconic Telephone at our summer place is that way. But for too many home users, their PC is just directly connected and they are wide open for abuse.
Compromised machines add to everyone's grief and expense. That's obvious, and inescapable. So why do providers let this happen? Is it money? These problems cost them money and surely cause more support costs for them. How much of a tech's time adds up to the cost of providing a firewall? Not much. This should be a no-brainer. Security begins at home, and nowhere is that more true than here.
The firewall doesn't have to be tremendously full featured. Just a basic nat device that blocks connections that didn't originate within would be a tremendous improvement over Uncle Jack's Windows 98 machine sitting out there with a public ip address. Uncle Jack doesn't need port forwarding, virtual servers, vpn's or anything else. He just needs protection from basic tcp attacks. The simplest possible firewall is a lot better than no firewall at all.
Obviously whatever firewall they provided would need the ability to be easily bypassed for circumstances where Uncle Jack does want to use his own device. Obviously some people would bypass and go directly to their PC's. Fine - I'm not looking for enforced compliance, merely a way to protect the millions of innocents who have no understanding of what they are getting into.
Uneducated and unprotected home users are a problem for all of us. It's time ISP's recognized that.
Got something to add? Send me email.
More Articles by Tony Lawrence © 2011-03-27 Tony Lawrence
Being able to break security doesn’t make you a hacker anymore than being able to hotwire cars makes you an automotive engineer. (Eric Raymond)