[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [dvd-discuss] e: portscanning
- To: dvd-discuss(at)cyber.law.harvard.edu
- Subject: RE: [dvd-discuss] e: portscanning
- From: Michael.A.Rolenz(at)aero.org
- Date: Mon, 22 Oct 2001 12:36:49 -0700
- Reply-To: dvd-discuss(at)cyber.law.harvard.edu
- Sender: owner-dvd-discuss(at)cyber.law.harvard.edu
port scanning is More like turning the door handle or checking if the door
is locked. As you point out it's all the time spent figuring out how to
get into it that shows what their real intent is...Port scanning is one of
those internet activities that it should be up to the ISPs to either stop
its users from sending out the scans or should monitor incoming scans
rather than having the government step in and make yet another halfbaked
law. BTW- Earthlink's policy is that using "ping" is a violation of the
service agreement.
Noah silva <nsilva@atari-source.com>
Sent by: owner-dvd-discuss@eon.law.harvard.edu
10/22/01 09:29 AM
Please respond to dvd-discuss
To: "'dvd-discuss@eon.law.harvard.edu'" <dvd-discuss@eon.law.harvard.edu>
cc:
Subject: RE: [dvd-discuss] e: portscanning
> > While I think that law is a bit unreasonable, as ICMP pings, etc. fly
> > around all the time, and I don't think port scanning should
> > be illegal...
>
> Port scanning would deviate from the well-known ports, so
> under the current law, even if permission for standard ports
> is implicit, scanning would probably still be illegal. (note: IANAL)
To me:
scanning is checking multiple ports.
Checking a port is knowing on a door to see if it's open.
Some ports are very standard, like FTP. Some are semi-standard (VNC,
etc.). Changing a ports isn't a good way to block access anyhow, so I
decline to draw a line between public and non-public ports. (technically
there is none).
Trying all my ports is like running down the hall knocking on every
door. It's annoying at most. Unless you do it 300 times in a row, it's
effects on me are very minor. So you know what doors I have open. If I
put the machine on the internet, I obviously don't mind random people
being able to tell that.
Anyone can scan right now the machine I sent this from and find:
a.) FTP
b.) HTTP
c.) Telnet
d.) SSH
e.) SMTP
maybe some others... so what? If I don't want you to be able to know
that.. I shouldn't put it on the internet.
If you try to log into telnet 300 times with different username/password
combinations... THAT is probably trying to "break in" and have
"unauthorized access".
-- noah silva