On Tue, Sep 24, 2002 at 10:32:03AM -0400, Noah L. Meyerhans wrote: > On Tue, Sep 24, 2002 at 06:36:10AM -0400, Rishi L Khan wrote: > > Are you sure that they portscanned you and not someone faking that IP? > > There'd have to be one *seriously* misconfigured router out there to > allow such a thing to work. Otherwise, they'd never get the results of > their portscan back. Its far more likely that a box on that netblock > was compromised and used for scanning purposes. > > noah
Not necessarily. Read about the "idlescan" option of nmap(1) or http://www.insecure.org/nmap/idlescan.html It could be that Intel's machines are just being used without being owned by the person who is scanning you. -- Erik Rossen ^ OpenPGP key: 2935D0B9 [EMAIL PROTECTED] /e\ "Use GnuPG, see the http://people.linux-gull.ch/rossen --- black helicopters." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
