[wplug] Threatening people who try to help (was: Speaking of
cracks? Maybe? How do you...)
Devin Lee Drew
dld at pobox.com
Fri Sep 26 18:48:39 EDT 2003
Alex, Russ, and all,
Me
______
|Soap|
| |
======
Only thing worth reading here: might be nice to delete that high quality
bit of open-service assessment work from the list archive.
I remember when I started looking at firewall logs. I wanted to
blacklist all those 'bad guys' who were knocking at the various (turned
off, or filtered) ports that they shouldn't be. Portcentry used to get
me so excited -- oooo it added another badguy to the hosts.deny file!
I'm saved! I wasted so much time with the kneejerk reaction: tracerouts,
portscanning the 'perpetrator', sending nastygrams to ISP admins. I
never threatened anyone with a lawyer though. :P
If someone with malicious intent wants to portscan you, they will do so
in a way that is exceedingly unlikely to be observable(over noise) or
traceable. My point is that port scanning doesn't imply malicious
intent. I'm no lawyer ... but if you are one and you can tell me that
i'm not allowed to connect to your unfiltered portmapper over the
internet then I'll stand corrected.
Though it would have be less educational for the rest of us, a large
mail list probably isn't the best place to share os footprinting info.
But just my 2c.
______
|Soap|
| | Me
======
Devin Drew
and the Knee Jerk to the Knee Jerk Department
More information about the wplug
mailing list