nanog mailing list archives
RE: "portscans" (was Re: Arbor Networks DoS defense product)
From: James <james () james-web net>
Date: Sun, 19 May 2002 15:20:26 -0400
Before choosing an onling bank, I portscanned the networks of the banks I was considering. It was the only way I couldfind to get arough assessment of their network security, which wasimportant tome as a customer for obvious reasons.
[snip]
I'm not arguing it's good practice. I'm giving it as an example of a reason why somebody might scan your network, even though they were not planning on attacking.
Even then, its not really effective. Most compromises I have read about to major banking providers is from someone at a business partner or something inside the business indirectly related to the web service being compromised and then the internal network and any inherit trust relationships being compromised. Very rarely is it something super-obvious like an open service with a default password (but I'm sure there are notable exceptions). So a portscan of their forward netblocks isn't really a 'test' of their network security, imo. - James
Current thread:
- Re: "portscans" (was Re: Arbor Networks DoS defense product), (continued)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 18)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Ralph Doncaster (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Alex Rubenstein (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) william (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Ralph Doncaster (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Stephen J. Wilcox (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Dan Hollis (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Greg A. Woods (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Gifford (May 19)
- RE: "portscans" (was Re: Arbor Networks DoS defense product) James (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Greg A. Woods (May 18)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 18)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Greg A. Woods (May 18)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Dan Hollis (May 19)
- Re: "portscans" (was Re: Arbor Networks DoS defense product) Scott Francis (May 19)