Nmap Announce mailing list archives

Re: nmap..... via web

From: "Holger Heimann" <hh () it-sec de>
Date: Fri, 19 Feb 1999 12:00:37 +0100

My to concerns are, What security problems should I expect.. if any..
The site would be restricted via htaccess, for the fact it is a possible
DOS that ppl could do.



Think about the people being scanned with your service also!
Be careful to restrict the portscan to a few ports. Not more as absolutely
neccessary for OS-recognition.
Do not give script-kiddies and other people the platform to do portscans on
arbituary machines on the internet. It's no good style and it will fall back
to you when people start scanning other computers through your machine.

We offer a WWW-Server detection and refrained from additional OS guessing
for the target, because we did not want to have other peoples computers
penetrated too much by the service. Remind that portscans are usualy
considered as an unfriendly act.

Regards,
Holger/it-sec.de

Current thread:

Re: nmap..... via web Joel Gridley (Feb 19)
- <Possible follow-ups>
- Re: nmap..... via web Holger Heimann (Feb 19)
- Re: nmap..... via web Donald McLachlan (Feb 22)
  - RE: nmap..... via web Frank Miller (Feb 22)
  - RE: nmap..... via web Russell Evans (Feb 26)
- RE: nmap..... via web Kris Northern (Feb 22)
- Re: nmap..... via web Daemor (Feb 22)
  - Re: nmap..... via web Philip Ehrens (Feb 23)