Security Incidents mailing list archives
Re: Handling Scans.
From: deviate <dv8 () HOME NL>
Date: Tue, 13 Feb 2001 19:51:06 +0100
I am on a dutch cable network, and get scanned so many times I just don't care anymore. If your security is so bad that a simple portscan can reveal all kinds of holes, you have other problems to worry about. Like one poster mentioned, scanning IS legal, ISP's WON'T generally do anything about it, and often the adress is spoofed. My box security is tight, my running services very minimal (SSH, SFTP) and my patches up-to-date. So why worry about some lamer who found a scanner on the net and has no clue what to do with the result he gets? If it a particular IP adress is scanning me for days in a row, I make a 'deny' rule just for them, but that is as far as I go. regards, Deviate -- - No Sig is a Good Sig -
Current thread:
- Handling Scans. Reeves, Mike (Feb 12)
- Re: Handling Scans. abel wisman (Feb 12)
- Re: Handling Scans. Bill Munger (Feb 12)
- Re: Handling Scans. E, M (Feb 13)
- Re: Handling Scans. Russell Fulton (Feb 13)
- Re: Handling Scans. deviate (Feb 13)
- Re: Handling Scans. Eelco Duijker (Feb 15)
- Re: Handling Scans. Joe Shaw (Feb 13)
- Re: Handling Scans. Michael Boman (Feb 13)
- Re: Handling Scans. Richard Johnson (Feb 13)
- Re: Handling Scans. Harlan S. Barney, Jr. (Feb 13)
- <Possible follow-ups>
- Re: Handling Scans. Booke, Raymond (Feb 12)
- Re: Handling Scans. Reeves, Mike (Feb 12)
- Re: Handling Scans. Timothy Lyons (Feb 12)
- Re: Handling Scans. Guillaume Filion (Feb 12)
- Re: Handling Scans. Abe Getchell (Feb 13)
(Thread continues...)
- Re: Handling Scans. abel wisman (Feb 12)