Michael,
As I referred, portscanning is considered an intrusion attempt. "Why would
you try 'open' every door on your neighborhood buildings?" - On the eyes of
the law, this is considered an 'attempt'. For me, an attempt would be trying
usernames/passwords against 'public' services, which is a lot beyond a
portscanning. Personally I got my home Internet connection shut down by my
ISP due to an 'attempt of intrusion on a router of an important
customer'.... whatever that is. It took almost a week of claims and
'threats' from me to get the link up again.
Regards,
Nuno Mendes / GeP
-----Original Message-----
From: Michael H. Warfield [mailto:[EMAIL PROTECTED]]
Sent: terca-feira, 11 de Setembro de 2001 4:03
To: News
Cc: [EMAIL PROTECTED]
Subject: Re: Is it "legal" to nmap offending hosts?
On Mon, Sep 10, 2001 at 10:23:58AM +0100, News wrote:
> Hi,
> Yes, it's considered illegal. In several countries it's considered an
> intrusion attempt and you can be charged for that. Even if you scan a
> possible intruder that scanned your hosts. Port scanning is seeing as a
> 'legal' tool for sys admins, to use on their network hosts, and law
> enforcement organizations.
Counter example. We have at least one court ruling in the
United States which explicity and emphatically said that port scanning
was legal and no activities in reaction to a port scan could be considered
as damages or losses. This was in the state of Georgia where I reside.
AFAIK, there are no contradictory court rulings elsewhere in the US.
If it's illegal in your country, please cite specifics. Court
rulings or specific laws would help. I see you are in .pt. What
are the specifics in Portugal?
Note: I don't consider it advisable to nmap someone back in
general, but for totally different reasons. Mostly, you don't want
to tip off attackers that they have your attention.
> Cheers,
> Nuno Mendes / GeP
> -----Original Message-----
> From: Xno Xutz [mailto:[EMAIL PROTECTED]]
> Sent: sabado, 8 de Setembro de 2001 16:10
> To: [EMAIL PROTECTED]
> Subject: Is it "legal" to nmap offending hosts?
>
>
> Hi All!
>
> Sure this is a beginners question, but I must ask it
> anyway. Is it considered ilegal ou unpolite to send
> nmap probes to offending hosts I find in my logs? I
> have no intention to go any farther, but I would like
> to gather some information on these hosts.
>
> Any comments would be welcome!
>
> Regards,
> Xno
>
> __________________________________________________
> Do You Yahoo!?
> Get email alerts & NEW webcam video instant messaging with Yahoo!
Messenger
> http://im.yahoo.com
--
Michael H. Warfield | (770) 985-6132 | [EMAIL PROTECTED]
(The Mad Wizard) | (678) 463-0932 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
