nanog mailing list archives
RE: Port scanning legal
From: Roeland Meyer <rmeyer () mhsc com>
Date: Tue, 19 Dec 2000 14:30:06 -0800
From: Steven M. Bellovin [mailto:smb () research att com] Sent: Tuesday, December 19, 2000 2:23 PM
Thanks for re-quoting this ...
In message <Pine.LNX.4.30.0012190930530.27364-100000@labyrinth.local>, "Edward S. Marshall" writes:http://www.securityfocus.com/templates/article.html?id=126
This may have ramifications for both security professionalsand abuse deskpersonnel; this ruling would seem to make it clear that youcannot claimtime spent investigating abuse issues as damage. Thecomplete finding ishere: http://pub.bna.com/eclr/00434.htm Any armchair lawyers on the list want to take a crack at this?
After reading the specifics I could find. It would seem that you could bill for the investigation only AFTER there has been a break-in. Bad analogies aside, a port scan isn't a break-in, by any stretch of the imagination. Therefore, on its own, it's not billable. However, if a break-in has been proven, time spent on the investigation, before-hand, becomes billable. -- IANAL - I Am Not A Lawyer. Before taking action on anything I say, you are encouraged to seek legal advice.
Current thread:
- RE: Port scanning legal, (continued)
- RE: Port scanning legal Roeland Meyer (Dec 19)
- RE: Port scanning legal Dan Hollis (Dec 19)
- RE: Port scanning legal Steven J. Sobol (Dec 19)
- RE: Port scanning legal Patrick Evans (Dec 19)
- Re: Port scanning legal Andrew Brown (Dec 20)
- RE: Port scanning legal Dan Hollis (Dec 19)
- RE: Port scanning legal Roeland Meyer (Dec 19)
- Re: Port scanning legal Shawn McMahon (Dec 19)
- RE: Port scanning legal Larry Sheldon (Dec 19)
- Re: Port scanning legal J.D. Falk (Dec 19)
- Re: Port scanning legal Steve Sobol (Dec 19)
- Re: Port scanning legal jlewis (Dec 19)
- Re: [OT]Port scanning legal Henry R. Linneweh (Dec 20)
- Re: [OT]Port scanning legal Brian W. (Dec 20)