>I have no convenient way of locating the PC from the Internet. I
>cannot use an IP posting type program, since the PC does not know the
>current external IP address of the firewall. I know that if it is
>connected, it will appear on one of four class C networks. I can
>locate it by scanning port 80, and then loading the addresses which
>respond in my browser. In the process, I'm sending attempted
>connections to many machines that aren't running web servers, as well
>as loading the home page of several machines that aren't mine. In
>practice, the about half of the latter are servers that have been
>configured to display a public page, and about half are unconfigured
>(Microsoft IIS demo pages are very common).
[..]
>Comments? Is this, or should this be, illegal? Is it rude?
[Personal Opinion Mode ON]
I would find it rude, especially given the expertise required to set up NAT
on a demand-dial Firewall, a reason like "I can't post the IP address"
stretches the limit of credibility, when one-command ("ifconfig ppp0 | mail
[EMAIL PROTECTED]") in your demand-dial script file should do the trick...
If someone gave me *that* excuse for scanning 4 class C's... :-)
But I do get your example though. I'm sure that somewhere out there is an
application, which hasn't heard of the concept of directory services, which
needs to scan a collective subnet for a response (not counting broadcasts a
la NetBIOS/XDMCP). I just can't really think of one. Oh wait,
BackOrifice2000... :-)
No snarkiness intended...
--
Gene Lee
[EMAIL PROTECTED]
[EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
