RE: Is it "legal" to nmap offending hosts?

From: Robert Woods (
Date: 09/10/01

From: "Robert Woods" <>
To: "'Xno Xutz'" <>, <>
Subject: RE: Is it "legal" to nmap offending hosts?
Date: Mon, 10 Sep 2001 11:45:31 -0400
Message-ID: <003201c13a0f$9fd8cab0$>

  I think it's better to run an nslookup on a host, then contact the
administrator and send a few pages of log files (careful not to send too
much info in logs - internal IPs etc.). Most of the traffic I get is either
related to a virus (i.e. Code Red infected IIS servers or servers at that
site compromised by another user). More than often the admins are unaware
of the traffic hitting your firewall, and most are polite and helpful when
investigating unwarranted network traffic. I don't advise to use aggressive
probes to investigate a host you suspect as probing yours, it's better to
work with them to resolve the issue.


-----Original Message-----
From: Xno Xutz []
Sent: Saturday, September 08, 2001 11:10 AM
Subject: Is it "legal" to nmap offending hosts?

Hi All!

Sure this is a beginners question, but I must ask it
anyway. Is it considered ilegal ou unpolite to send
nmap probes to offending hosts I find in my logs? I
have no intention to go any farther, but I would like
to gather some information on these hosts.

Any comments would be welcome!


Do You Yahoo!?
Get email alerts & NEW webcam video instant messaging with Yahoo! Messenger