nanog mailing list archives

Re[6]: "portscans" (was Re: Arbor Networks DoS defense product)

From: Allan Liska <allan () allan org>
Date: Sun, 19 May 2002 11:59:15 -0400


Hello Ralph,

Sunday, May 19, 2002, 11:22:08 AM, you wrote:

If they don't give a satisfactory bank somewhere else (or offer your
services ;)).  Certainly that is a better approach than scanning to
see what you can find out.  The organization receiving the scan has
no way of knowing what your intentions are -- and should interpret
them as hostile.


RD> I think that's pretty stupid.  If I had my network admin investigate every
RD> portscan, my staff costs would go up 10x and I'd quickly go bankrupt.
RD> Instead we keep our servers very secure, and spend the time and effort
RD> only when there is evidence of a break in.

I didn't say investigate every portscan, I said assume every portscan
is hostile.  There is a big difference.


allan
-- 
allan
allan () allan org
http://www.allan.org

Current thread:

Re: "portscans" (was Re: Arbor Networks DoS defense product), (continued)
- - - Message not available
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 18)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Henry Yen (May 18)
    - Message not available
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 18)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Ralph Doncaster (May 18)
    - Re[2]: "portscans" (was Re: Arbor Networks DoS defense product) Allan Liska (May 18)
    - Re: Re[2]: "portscans" (was Re: Arbor Networks DoS defense product) E.B. Dreger (May 18)
    - Re: Re[2]: "portscans" (was Re: Arbor Networks DoS defense product) Ralph Doncaster (May 19)
    - Re: Re[2]: "portscans" (was Re: Arbor Networks DoS defense product) up (May 19)
    - Re[4]: "portscans" (was Re: Arbor Networks DoS defense product) Allan Liska (May 19)
    - Re: Re[4]: "portscans" (was Re: Arbor Networks DoS defense product) Ralph Doncaster (May 19)
    - Re[6]: "portscans" (was Re: Arbor Networks DoS defense product) Allan Liska (May 19)
    - Re: Re[6]: "portscans" (was Re: Arbor Networks DoS defense product) Ralph Doncaster (May 19)
    - Re[8]: "portscans" (was Re: Arbor Networks DoS defense product) Allan Liska (May 19)
    - Re: Re[8]: "portscans" (was Re: Arbor Networks DoS defense product) Greg A. Woods (May 19)
    - RE: Re[8]: "portscans" (was Re: Arbor Networks DoS defense product) Benjamin P. Grubin (May 19)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Greg A. Woods (May 19)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Dan Hollis (May 19)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Mitch Halmu (May 19)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Dan Hollis (May 19)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Mitch Halmu (May 19)
    - Re: "portscans" (was Re: Arbor Networks DoS defense product) Mike Lewinski (May 19)

(Thread continues...)