Re: Reporting Hackers

From: Alun Jones [MSFT] (alunj_at_online.microsoft.com)
Date: 01/19/05

  • Next message: Will: "Blank Internet Explorer windows" 
    Date: Wed, 19 Jan 2005 09:00:56 -0800

    "Phillip Windell" <@.> wrote in message
    news:upGxLNj$EHA.3824@TK2MSFTNGP10.phx.gbl...
    > I'd agree. I don't consider "port scans" to be "hacking" and worrying
    > about
    > them is like worrying about other guys looking at your girlfriend when you
    > go out in public. If one is that worried about it then don't go out in
    > public, or get a girlfriend you can trust, or,...just get an ugly
    > girlfriend.

    Port scans are to hacking (or "cracking", if you prefer) roughly as circling
    a house checking for open windows and doors is to burglary.

    Definitely not the same, but when you perceive somebody engaged in the
    activity who has no apparent reason for doing so, you start locking up your
    house tighter. It might just be a visiting relative who's forgotten his
    keys, but then again, it might not.

    In the case of port scans, it might be someone who's trying to port scan his
    own system, but who has a stale (or just plain wrong) DNS entry that matches
    your IP - or it could be a hacker trying to find out what ports are open for
    him to attack.

    A question I like to ask is - "is this the number one best thing you can
    concentrate on in securing your system? Does it rank in the top ten? Top
    hundred?" Port scans are going to go on - you need to make sure that the
    servers that are found are secured as necessary.

    Alun.
    ~~~~ 

    -- 
Software Design Engineer, Internet Information Server (FTP)
This posting is provided "AS IS" with no warranties, and confers no rights.
  • Next message: Will: "Blank Internet Explorer windows"
    Loading