oss-sec mailing list archives
Re: [Pool] shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes
From: Rob Janssen <pe1chl () amsat org>
Date: Thu, 28 Jan 2016 18:56:45 +0100
Ask Bjørn Hansen wrote:
Hi Luca (and everyone), I removed those servers yesterday. Brad had been helping look to see if others were doing something similar. I think the behavior was falling well outside what's reasonably expected from a server operator participating in the pool. The operator had also been adding the same server multiple times in order to "attract" more traffic which is definitely outside the guidelines.
This guy has been doing other things that are not good net citizenship. But it is not his agenda. He is a black hat and he supports cracking. Some people are like that. Jerks. Rob
Current thread:
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes, (continued)
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Zach W. (Jan 27)
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Hazel (Jan 29)
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes enki (Jan 29)
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Scott Herbert (Jan 29)
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Daniel Micay (Jan 29)
- Re: shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Daniel Micay (Jan 29)
- Re: [Pool] shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Rob Janssen (Jan 28)
- Re: [Pool] shodan.io actively infiltrating ntp.org IPv6 pools for scanning purposes Asbjorn Hojmark (Jan 28)